Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng 1.5.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-3464
Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 up to and including 1.5.7 might allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-ba...
Libpng Libpng 1.5.7
Libpng Libpng 1.5.1
Libpng Libpng 1.5.6
Libpng Libpng 1.5.3
Libpng Libpng 1.5.4
Libpng Libpng 1.5.5
Libpng Libpng 1.5.0
Libpng Libpng 1.5.2
NA
CVE-2013-7353
Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng prior to 1.5.14beta08 allows context-dependent malicious users to cause a denial of service (segmentation fault and crash) via a crafted image, which triggers a heap-based buffer overflow.
Libpng Libpng
Libpng Libpng 1.5.9
Libpng Libpng 1.5.8
Libpng Libpng 1.5.7
Libpng Libpng 1.5.1
Libpng Libpng 1.5.6
Libpng Libpng 1.5.3
Libpng Libpng 1.5.12
Libpng Libpng 1.5.11
Libpng Libpng 1.5.4
Libpng Libpng 1.5.5
Libpng Libpng 1.5.10
Libpng Libpng 1.5.0
Libpng Libpng 1.5.13
Libpng Libpng 1.5.2
NA
CVE-2013-7354
Multiple integer overflows in libpng prior to 1.5.14rc03 allow remote malicious users to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.
Libpng Libpng
Libpng Libpng 1.5.9
Libpng Libpng 1.5.8
Libpng Libpng 1.5.7
Libpng Libpng 1.5.1
Libpng Libpng 1.5.6
Libpng Libpng 1.5.3
Libpng Libpng 1.5.12
Libpng Libpng 1.5.11
Libpng Libpng 1.5.4
Libpng Libpng 1.5.5
Libpng Libpng 1.5.10
Libpng Libpng 1.5.0
Libpng Libpng 1.5.13
Libpng Libpng 1.5.2
NA
CVE-2011-3048
The png_set_text_2 function in pngset.c in libpng 1.0.x prior to 1.0.59, 1.2.x prior to 1.2.49, 1.4.x prior to 1.4.11, and 1.5.x prior to 1.5.10 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted text chunk in a PNG image fi...
Libpng Libpng 1.0.37
Libpng Libpng 1.0.41
Libpng Libpng 1.0.46
Libpng Libpng 1.0.1
Libpng Libpng 1.0.8
Libpng Libpng 1.0.55
Libpng Libpng 1.0.14
Libpng Libpng 1.0.17
Libpng Libpng 1.0.35
Libpng Libpng 1.0.52
Libpng Libpng 1.0.27
Libpng Libpng 1.0.22
Libpng Libpng 1.0.11
Libpng Libpng 1.0.20
Libpng Libpng 1.0.9
Libpng Libpng 1.0.13
Libpng Libpng 1.0.44
Libpng Libpng 1.0.6
Libpng Libpng 1.0.32
Libpng Libpng 1.0.50
Libpng Libpng 1.0.57
Libpng Libpng 1.0.34
NA
CVE-2012-3425
The png_push_read_zTXt function in pngpread.c in libpng 1.0.x prior to 1.0.58, 1.2.x prior to 1.2.48, 1.4.x prior to 1.4.10, and 1.5.x prior to 1.5.10 allows remote malicious users to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Libpng Libpng 1.4.9
Libpng Libpng 1.4.4
Libpng Libpng 1.4.7
Libpng Libpng 1.4.1
Libpng Libpng 1.4.2
Libpng Libpng 1.4.0
Libpng Libpng 1.4.6
Libpng Libpng 1.4.5
Libpng Libpng 1.4.3
Libpng Libpng 1.4.8
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Libpng Libpng 1.2.14
Libpng Libpng 1.2.45
Libpng Libpng 1.2.46
Libpng Libpng 1.2.33
Libpng Libpng 1.2.16
Libpng Libpng 1.2.35
8.8
CVSSv3
CVE-2015-8540
Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 up to and including 0.99, 1.0.x prior to 1.0.66, 1.1.x and 1.2.x prior to 1.2.56, 1.3.x and 1.4.x prior to 1.4.19, and 1.5.x prior to 1.5.26 allows remote malicious users to have unspecified impact v...
Redhat Enterprise Linux Desktop Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 6.0
Redhat Enterprise Linux Hpc Node 6.0
Redhat Enterprise Linux Workstation Supplementary 6.0
Redhat Enterprise Linux Server Supplementary 5.0
Redhat Enterprise Linux Desktop Supplementary 5.0
Libpng Libpng 1.2.14
Libpng Libpng 1.2.45
Libpng Libpng 1.2.46
Libpng Libpng 1.2.33
Libpng Libpng 1.2.16
Libpng Libpng 1.2.35
Libpng Libpng 1.2.29
Libpng Libpng 1.2.26
Libpng Libpng 1.2.54
Libpng Libpng 1.2.7
Libpng Libpng 1.2.43
Libpng Libpng 1.2.2
Libpng Libpng 1.2.4
Libpng Libpng 1.2.22
Libpng Libpng 1.2.39
Libpng Libpng 1.2.48
7.5
CVSSv3
CVE-2016-10087
The png_set_text_2 function in libpng 0.71 prior to 1.0.67, 1.2.x prior to 1.2.57, 1.4.x prior to 1.4.20, 1.5.x prior to 1.5.28, and 1.6.x prior to 1.6.27 allows context-dependent malicious users to cause a NULL pointer dereference vectors involving loading a text chunk into a pn...
Libpng Libpng 1.0.5g
Libpng Libpng 1.0.37
Libpng Libpng 0.99e
Libpng Libpng 0.98
Libpng Libpng 1.0.4d
Libpng Libpng 1.0.41
Libpng Libpng 1.0.0b
Libpng Libpng 1.0.1b
Libpng Libpng 1.0.46
Libpng Libpng 0.99d
Libpng Libpng 1.0.4c
Libpng Libpng 1.0.65
Libpng Libpng 1.0.5t
Libpng Libpng 1.0.1
Libpng Libpng 1.0.4e
Libpng Libpng 1.0.1c
Libpng Libpng 1.0.8
Libpng Libpng 0.81
Libpng Libpng 1.0.5n
Libpng Libpng 0.88
Libpng Libpng 1.0.6f
Libpng Libpng 1.0.5k
1 Article
NA
CVE-2010-0182
The XMLDocument::load function in Mozilla Firefox prior to 3.5.9 and 3.6.x prior to 3.6.2, Thunderbird prior to 3.0.4, and SeaMonkey prior to 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows malicious users to by...
Mozilla Firefox 3.6
Mozilla Firefox 0.1
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.5
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 3.0.9
Mozilla Firefox 1.5.0.6
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.3
Mozilla Firefox 3.5.6
Mozilla Firefox 3.0.8
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.4
Mozilla Firefox 1.0.2
Mozilla Firefox 3.5
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started