Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng 1.0.12 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-0597
Multiple buffer overflows in libpng 1.2.5 and previous versions, as used in multiple products, allow remote malicious users to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tR...
Microsoft Windows Messenger 5.0
Greg Roelofs Libpng
Microsoft Msn Messenger 6.1
Microsoft Msn Messenger 6.2
Microsoft Windows Media Player 9
Microsoft Windows 98se
Microsoft Windows Me
3 EDB exploits
2 Github repositories
9.3
CVSSv2
CVE-2015-8540
Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 up to and including 0.99, 1.0.x prior to 1.0.66, 1.1.x and 1.2.x prior to 1.2.56, 1.3.x and 1.4.x prior to 1.4.19, and 1.5.x prior to 1.5.26 allows remote malicious users to have unspecified impact v...
Redhat Enterprise Linux Desktop Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 6.0
Redhat Enterprise Linux Hpc Node 6.0
Redhat Enterprise Linux Workstation Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 5.0
Redhat Enterprise Linux Desktop Supplementary 5.0
Libpng Libpng 1.2.14
Libpng Libpng 1.2.45
Libpng Libpng 1.2.46
Libpng Libpng 1.2.33
Libpng Libpng 1.2.16
Libpng Libpng 1.2.35
Libpng Libpng 1.2.29
Libpng Libpng 1.2.26
Libpng Libpng 1.2.54
Libpng Libpng 1.2.7
Libpng Libpng 1.2.43
Libpng Libpng 1.2.2
Libpng Libpng 1.2.4
Libpng Libpng 1.2.22
Libpng Libpng 1.2.39
Libpng Libpng 1.2.48
7.5
CVSSv2
CVE-2008-1382
libpng 1.0.6 up to and including 1.0.32, 1.2.0 up to and including 1.2.26, and 1.4.0beta01 up to and including 1.4.0beta19 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a PNG file with zero length "unkno...
Libpng Libpng 1.0.12
Libpng Libpng 1.0.15
Libpng Libpng 1.0.16
Libpng Libpng 1.0.19
Libpng Libpng 1.0.20
Libpng Libpng 1.0.23
Libpng Libpng 1.0.25
Libpng Libpng 1.0.26
Libpng Libpng 1.0.27
Libpng Libpng 1.0.28
Libpng Libpng 1.0.29
Libpng Libpng 1.0.6
Libpng Libpng 1.0.7
Libpng Libpng 1.0.8
Libpng Libpng 1.0.9
Libpng Libpng 1.2.0
Libpng Libpng 1.2.1
Libpng Libpng 1.2.10
Libpng Libpng 1.2.11
Libpng Libpng 1.2.13
Libpng Libpng 1.2.14
Libpng Libpng 1.2.15
7.5
CVSSv2
CVE-2004-0768
libpng 1.2.5 and previous versions does not properly calculate certain buffer offsets, which could allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Greg Roelofs Libpng3 1.2.3
Greg Roelofs Libpng3 1.2.4
Greg Roelofs Libpng3 1.2.5
Greg Roelofs Libpng3 1.2.0
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng3 1.2.2
7.5
CVSSv2
CVE-2002-1363
Portable Network Graphics (PNG) library libpng 1.2.5 and previous versions does not correctly calculate offsets, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.
Greg Roelofs Libpng 1.0.13
Greg Roelofs Libpng 1.0.14
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.0.5
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.11
Greg Roelofs Libpng 1.0.12
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
7.5
CVSSv2
CVE-2002-0660
Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow malicious users to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-2002-0728.
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng 1.0.12
6.8
CVSSv2
CVE-2011-3048
The png_set_text_2 function in pngset.c in libpng 1.0.x prior to 1.0.59, 1.2.x prior to 1.2.49, 1.4.x prior to 1.4.11, and 1.5.x prior to 1.5.10 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted text chunk in a PNG image fi...
Libpng Libpng 1.0.57
Libpng Libpng 1.0.56
Libpng Libpng 1.0.50
Libpng Libpng 1.0.48
Libpng Libpng 1.0.41
Libpng Libpng 1.0.40
Libpng Libpng 1.0.32
Libpng Libpng 1.0.31
Libpng Libpng 1.0.30
Libpng Libpng 1.0.23
Libpng Libpng 1.0.22
Libpng Libpng 1.0.1
Libpng Libpng 1.0.0
Libpng Libpng 1.0.8
Libpng Libpng 1.0.7
Libpng Libpng 1.0.58
Libpng Libpng 1.0.54
Libpng Libpng 1.0.53
Libpng Libpng 1.0.45
Libpng Libpng 1.0.44
Libpng Libpng 1.0.37
Libpng Libpng 1.0.35
5
CVSSv2
CVE-2016-10087
The png_set_text_2 function in libpng 0.71 prior to 1.0.67, 1.2.x prior to 1.2.57, 1.4.x prior to 1.4.20, 1.5.x prior to 1.5.28, and 1.6.x prior to 1.6.27 allows context-dependent malicious users to cause a NULL pointer dereference vectors involving loading a text chunk into a pn...
Libpng Libpng 1.0.5g
Libpng Libpng 1.0.37
Libpng Libpng 0.99e
Libpng Libpng 0.98
Libpng Libpng 1.0.4d
Libpng Libpng 1.0.41
Libpng Libpng 1.0.0b
Libpng Libpng 1.0.1b
Libpng Libpng 1.0.46
Libpng Libpng 0.99d
Libpng Libpng 1.0.4c
Libpng Libpng 1.0.65
Libpng Libpng 1.0.5t
Libpng Libpng 1.0.1
Libpng Libpng 1.0.4e
Libpng Libpng 1.0.1c
Libpng Libpng 1.0.8
Libpng Libpng 0.81
Libpng Libpng 1.0.5n
Libpng Libpng 0.88
Libpng Libpng 1.0.6f
Libpng Libpng 1.0.5k
1 Article
5
CVSSv2
CVE-2006-7244
Memory leak in pngwutil.c in libpng 1.2.13beta1, and other versions prior to 1.2.15beta3, allows context-dependent malicious users to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative embedded profile length.
Libpng Libpng 1.0.37
Libpng Libpng 1.2.14
Libpng Libpng 1.2.11
Libpng Libpng 1.0.6
Libpng Libpng 1.0.23
Libpng Libpng 1.0.41
Libpng Libpng 1.0.9
Libpng Libpng 1.0.15
Libpng Libpng 1.2.0
Libpng Libpng 1.0.10
Libpng Libpng 1.2.10
Libpng Libpng 1.0.7
Libpng Libpng 1.0.46
Libpng Libpng 1.0.17
Libpng Libpng 1.0.29
Libpng Libpng 1.2.1
Libpng Libpng 1.0.27
Libpng Libpng 1.0.1
Libpng Libpng 1.0.8
Libpng Libpng 1.0.12
Libpng Libpng 1.0.31
Libpng Libpng 1.0.14
5
CVSSv2
CVE-2004-0598
The png_handle_iCCP function in libpng 1.2.5 and previous versions allows remote malicious users to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.
Greg Roelofs Libpng
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »