)]}' { "commit": "9c0d5c77bf5bf2d7c1e11f388de40a70e0191550", "tree": "72e2e0c455f684527aae176a5886ed49e8609020", "parents": [ "8439534daa1d3a5705ba92e653eda9251246dd61" ], "author": { "name": "Cosmin Truta", "email": "ctruta@gmail.com", "time": "Sun Feb 03 22:40:56 2019 -0500" }, "committer": { "name": "Cosmin Truta", "email": "ctruta@gmail.com", "time": "Sun Feb 03 22:40:56 2019 -0500" }, "message": "Call png_image_free_function without guarding it with png_safe_execute\n\npng_image_free_function (or any other destructor) should never fail.\nDestructors need not and must not be executed under png_safe_execute.\n\nReference: CVE-2019-7317, use-after-free in png_image_free\n", "tree_diff": [ { "type": "modify", "old_id": "9d9926f6381c624c0b5acfdaf64e21816984c4a4", "old_mode": 33188, "old_path": "png.c", "new_id": "efd1aecfbd7fbecab87205a7f9ba0413feaaec7b", "new_mode": 33188, "new_path": "png.c" } ] }