A beginner’s journey into secure code review, and how I accidentally rediscovered an 11-year-old vulnerability in libpng.