Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2018-18511
Cross-origin images can be read from a canvas element in violation of the same-origin policy using the transferFromImageBitmap method. *Note: This only affects Firefox 65. Previous versions are unaffected.*. This vulnerability affects Firefox < 65.0.1.
Mozilla Firefox 65.0
3.4
CVSSv3
CVE-2019-2786
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with networ...
Oracle Jdk 11.0.3
Oracle Jdk 12.0.1
Oracle Jre 11.0.3
Oracle Jre 12.0.1
Oracle Jdk 1.8.0
Oracle Jre 1.8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Hp Xp7 Command View
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 16.04
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Satellite 5.8
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.6
3.3
CVSSv3
CVE-2020-27818
A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.
Libpng Pngcheck 2.4.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Extra Packages For Enterprise Linux 7.0
Debian Debian Linux 9.0
3.1
CVSSv3
CVE-2019-2818
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 11.0.3 and 12.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java...
Oracle Jdk 11.0.3
Oracle Jdk 12.0.1
Oracle Jre 12.0.1
Oracle Jre 11.0.3
3.1
CVSSv3
CVE-2019-2766
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker wi...
Oracle Jdk 11.0.3
Oracle Jdk 12.0.1
Oracle Jre 11.0.3
Oracle Jre 12.0.1
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Mcafee Epolicy Orchestrator 5.9.0
Mcafee Epolicy Orchestrator 5.9.1
Mcafee Epolicy Orchestrator 5.10.0
Hp Xp7 Command View
Opensuse Leap 15.0
Opensuse Leap 15.1
NA
CVE-2015-4588
Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
NA
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
NA
CVE-2015-0973
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng prior to 1.5.21 and 1.6.x prior to 1.6.16 allows context-dependent malicious users to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Oracle Solaris 11.2
Libpng Libpng 1.6.0
Libpng Libpng 1.6.1
Libpng Libpng 1.6.2
Libpng Libpng 1.6.10
Libpng Libpng 1.6.11
Libpng Libpng 1.6.4
Libpng Libpng 1.6.5
Libpng Libpng 1.6.6
Libpng Libpng 1.6.7
Libpng Libpng 1.6.14
Libpng Libpng 1.6.15
Libpng Libpng 1.6.3
Libpng Libpng 1.6.8
Libpng Libpng 1.6.9
Libpng Libpng 1.6.13
Libpng Libpng
Libpng Libpng 1.6.12
Apple Mac Os X
NA
CVE-2014-9495
Heap-based buffer overflow in the png_combine_row function in libpng prior to 1.5.21 and 1.6.x prior to 1.6.16, when running on 64-bit systems, might allow context-dependent malicious users to execute arbitrary code via a "very wide interlaced" PNG image.
Apple Mac Os X
Libpng Libpng 1.6.0
Libpng Libpng 1.6.4
Libpng Libpng 1.6.9
Libpng Libpng 1.6.14
Libpng Libpng 1.6.2
Libpng Libpng 1.6.7
Libpng Libpng 1.6.11
Libpng Libpng 1.6.12
Libpng Libpng
Libpng Libpng 1.6.1
Libpng Libpng 1.6.5
Libpng Libpng 1.6.6
Libpng Libpng 1.6.10
Libpng Libpng 1.6.15
Libpng Libpng 1.6.3
Libpng Libpng 1.6.8
Libpng Libpng 1.6.13
1 Github repository
NA
CVE-2013-7353
Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng prior to 1.5.14beta08 allows context-dependent malicious users to cause a denial of service (segmentation fault and crash) via a crafted image, which triggers a heap-based buffer overflow.
Libpng Libpng 1.5.0
Libpng Libpng 1.5.1
Libpng Libpng 1.5.5
Libpng Libpng 1.5.9
Libpng Libpng
Libpng Libpng 1.5.12
Libpng Libpng 1.5.2
Libpng Libpng 1.5.7
Libpng Libpng 1.5.11
Libpng Libpng 1.5.10
Libpng Libpng 1.5.6
Libpng Libpng 1.5.13
Libpng Libpng 1.5.3
Libpng Libpng 1.5.4
Libpng Libpng 1.5.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »