Mandriva Linux Security Advisory 2010-179 – Multiple integer overflows in glpng.c in glpng 1.45 allow context-dependent attackers to execute arbitrary code via a crafted PNG image, related to the pngLoadF function, leading to heap-based buffer overflows. The updated packages have been patched to correct this issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93763/MDVSA-2010-179.txt
Source: https://packetstormsecurity.com/files/93763/Mandriva-Linux-Security-Advisory-2010-179.html