Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng 1.5.4 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2011-3464
Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 up to and including 1.5.7 might allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-ba...
Libpng Libpng 1.5.4
Libpng Libpng 1.5.5
Libpng Libpng 1.5.6
Libpng Libpng 1.5.2
Libpng Libpng 1.5.3
Libpng Libpng 1.5.7
Libpng Libpng 1.5.0
Libpng Libpng 1.5.1
445
VMScore
CVE-2013-7353
Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng prior to 1.5.14beta08 allows context-dependent malicious users to cause a denial of service (segmentation fault and crash) via a crafted image, which triggers a heap-based buffer overflow.
Libpng Libpng 1.5.0
Libpng Libpng 1.5.1
Libpng Libpng 1.5.5
Libpng Libpng 1.5.9
Libpng Libpng
Libpng Libpng 1.5.12
Libpng Libpng 1.5.2
Libpng Libpng 1.5.7
Libpng Libpng 1.5.11
Libpng Libpng 1.5.10
Libpng Libpng 1.5.6
Libpng Libpng 1.5.13
Libpng Libpng 1.5.3
Libpng Libpng 1.5.4
Libpng Libpng 1.5.8
445
VMScore
CVE-2013-7354
Multiple integer overflows in libpng prior to 1.5.14rc03 allow remote malicious users to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.
Libpng Libpng 1.5.0
Libpng Libpng 1.5.1
Libpng Libpng 1.5.5
Libpng Libpng 1.5.9
Libpng Libpng
Libpng Libpng 1.5.12
Libpng Libpng 1.5.2
Libpng Libpng 1.5.3
Libpng Libpng 1.5.7
Libpng Libpng 1.5.11
Libpng Libpng 1.5.10
Libpng Libpng 1.5.6
Libpng Libpng 1.5.13
Libpng Libpng 1.5.4
Libpng Libpng 1.5.8
605
VMScore
CVE-2011-3048
The png_set_text_2 function in pngset.c in libpng 1.0.x prior to 1.0.59, 1.2.x prior to 1.2.49, 1.4.x prior to 1.4.11, and 1.5.x prior to 1.5.10 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted text chunk in a PNG image fi...
Libpng Libpng 1.0.57
Libpng Libpng 1.0.56
Libpng Libpng 1.0.50
Libpng Libpng 1.0.48
Libpng Libpng 1.0.41
Libpng Libpng 1.0.40
Libpng Libpng 1.0.32
Libpng Libpng 1.0.31
Libpng Libpng 1.0.30
Libpng Libpng 1.0.23
Libpng Libpng 1.0.22
Libpng Libpng 1.0.1
Libpng Libpng 1.0.0
Libpng Libpng 1.0.8
Libpng Libpng 1.0.7
Libpng Libpng 1.0.58
Libpng Libpng 1.0.54
Libpng Libpng 1.0.53
Libpng Libpng 1.0.45
Libpng Libpng 1.0.44
Libpng Libpng 1.0.37
Libpng Libpng 1.0.35
383
VMScore
CVE-2012-3425
The png_push_read_zTXt function in pngpread.c in libpng 1.0.x prior to 1.0.58, 1.2.x prior to 1.2.48, 1.4.x prior to 1.4.10, and 1.5.x prior to 1.5.10 allows remote malicious users to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Libpng Libpng 1.4.9
Libpng Libpng 1.4.4
Libpng Libpng 1.4.7
Libpng Libpng 1.4.1
Libpng Libpng 1.4.2
Libpng Libpng 1.4.0
Libpng Libpng 1.4.6
Libpng Libpng 1.4.5
Libpng Libpng 1.4.3
Libpng Libpng 1.4.8
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Libpng Libpng 1.2.14
Libpng Libpng 1.2.45
Libpng Libpng 1.2.46
Libpng Libpng 1.2.33
Libpng Libpng 1.2.16
Libpng Libpng 1.2.35
828
VMScore
CVE-2015-8540
Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 up to and including 0.99, 1.0.x prior to 1.0.66, 1.1.x and 1.2.x prior to 1.2.56, 1.3.x and 1.4.x prior to 1.4.19, and 1.5.x prior to 1.5.26 allows remote malicious users to have unspecified impact v...
Redhat Enterprise Linux Desktop Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 6.0
Redhat Enterprise Linux Hpc Node 6.0
Redhat Enterprise Linux Workstation Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 5.0
Redhat Enterprise Linux Desktop Supplementary 5.0
Libpng Libpng 1.2.14
Libpng Libpng 1.2.45
Libpng Libpng 1.2.46
Libpng Libpng 1.2.33
Libpng Libpng 1.2.16
Libpng Libpng 1.2.35
Libpng Libpng 1.2.29
Libpng Libpng 1.2.26
Libpng Libpng 1.2.54
Libpng Libpng 1.2.7
Libpng Libpng 1.2.43
Libpng Libpng 1.2.2
Libpng Libpng 1.2.4
Libpng Libpng 1.2.22
Libpng Libpng 1.2.39
Libpng Libpng 1.2.48
445
VMScore
CVE-2016-10087
The png_set_text_2 function in libpng 0.71 prior to 1.0.67, 1.2.x prior to 1.2.57, 1.4.x prior to 1.4.20, 1.5.x prior to 1.5.28, and 1.6.x prior to 1.6.27 allows context-dependent malicious users to cause a NULL pointer dereference vectors involving loading a text chunk into a pn...
Libpng Libpng 1.0.5g
Libpng Libpng 1.0.37
Libpng Libpng 0.99e
Libpng Libpng 0.98
Libpng Libpng 1.0.4d
Libpng Libpng 1.0.41
Libpng Libpng 1.0.0b
Libpng Libpng 1.0.1b
Libpng Libpng 1.0.46
Libpng Libpng 0.99d
Libpng Libpng 1.0.4c
Libpng Libpng 1.0.65
Libpng Libpng 1.0.5t
Libpng Libpng 1.0.1
Libpng Libpng 1.0.4e
Libpng Libpng 1.0.1c
Libpng Libpng 1.0.8
Libpng Libpng 0.81
Libpng Libpng 1.0.5n
Libpng Libpng 0.88
Libpng Libpng 1.0.6f
Libpng Libpng 1.0.5k
1 Article
231
VMScore
CVE-2011-3328
The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certai...
Greg Roelofs Libpng 1.5.4
383
VMScore
CVE-2011-2691
The png_err function in pngerror.c in libpng 1.0.x prior to 1.0.55, 1.2.x prior to 1.2.45, 1.4.x prior to 1.4.8, and 1.5.x prior to 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote malicious users to cause a denial...
Libpng Libpng
Fedoraproject Fedora 14
Debian Debian Linux 5.0
Debian Debian Linux 6.0
605
VMScore
CVE-2011-2690
Buffer overflow in libpng 1.0.x prior to 1.0.55, 1.2.x prior to 1.2.45, 1.4.x prior to 1.4.8, and 1.5.x prior to 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_expand function, allows remote malicious users to overwrite memory with ...
Libpng Libpng
Fedoraproject Fedora 14
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »