Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-11693
The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics drivers on Linux. This could result in malicious content freezing a tab or triggering a potentially exploitable crash. *Note: this issue only occurs on Linux. Other operating systems are un...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Firefox Esr
668
VMScore
CVE-2017-12652
libpng prior to 1.6.32 does not properly check the length of chunks against the user limit.
Libpng Libpng
Netapp Active Iq Unified Manager -
668
VMScore
CVE-2016-3751
Unspecified vulnerability in libpng prior to 1.6.20, as used in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01, allows malicious users to gain privileges via a crafted application, as demonstrated by obtaining Signature or Sign...
Libpng Libpng
Google Android 5.0.1
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.1.2
Google Android 4.0.1
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.0
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 5.1
Google Android 5.0
Google Android 4.4.2
Google Android 4.2.2
Google Android 4.2
1 Github repository
668
VMScore
CVE-2015-0973
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng prior to 1.5.21 and 1.6.x prior to 1.6.16 allows context-dependent malicious users to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Oracle Solaris 11.2
Libpng Libpng 1.6.0
Libpng Libpng 1.6.1
Libpng Libpng 1.6.2
Libpng Libpng 1.6.10
Libpng Libpng 1.6.11
Libpng Libpng 1.6.4
Libpng Libpng 1.6.5
Libpng Libpng 1.6.6
Libpng Libpng 1.6.7
Libpng Libpng 1.6.14
Libpng Libpng 1.6.15
Libpng Libpng 1.6.3
Libpng Libpng 1.6.8
Libpng Libpng 1.6.9
Libpng Libpng 1.6.13
Libpng Libpng
Libpng Libpng 1.6.12
Apple Mac Os X
668
VMScore
CVE-2011-3464
Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 up to and including 1.5.7 might allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-ba...
Libpng Libpng 1.5.4
Libpng Libpng 1.5.5
Libpng Libpng 1.5.6
Libpng Libpng 1.5.2
Libpng Libpng 1.5.3
Libpng Libpng 1.5.7
Libpng Libpng 1.5.0
Libpng Libpng 1.5.1
668
VMScore
CVE-2008-1382
libpng 1.0.6 up to and including 1.0.32, 1.2.0 up to and including 1.2.26, and 1.4.0beta01 up to and including 1.4.0beta19 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a PNG file with zero length "unkno...
Libpng Libpng 1.0.12
Libpng Libpng 1.0.15
Libpng Libpng 1.0.16
Libpng Libpng 1.0.19
Libpng Libpng 1.0.20
Libpng Libpng 1.0.23
Libpng Libpng 1.0.25
Libpng Libpng 1.0.26
Libpng Libpng 1.0.27
Libpng Libpng 1.0.28
Libpng Libpng 1.0.29
Libpng Libpng 1.0.6
Libpng Libpng 1.0.7
Libpng Libpng 1.0.8
Libpng Libpng 1.0.9
Libpng Libpng 1.2.0
Libpng Libpng 1.2.1
Libpng Libpng 1.2.10
Libpng Libpng 1.2.11
Libpng Libpng 1.2.13
Libpng Libpng 1.2.14
Libpng Libpng 1.2.15
668
VMScore
CVE-2007-0455
Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.
Gd Graphics Library Project Gd Graphics Library
Php Php
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 13
Fedoraproject Fedora 14
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
Redhat Enterprise Linux Workstation 3.0
Redhat Enterprise Linux Server 3.0
668
VMScore
CVE-2006-3334
Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng prior to 1.2.12 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly i...
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.2.5
Greg Roelofs Libpng 1.2.10
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.9
Greg Roelofs Libpng
Greg Roelofs Libpng 1.2.0
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.7rc1
Greg Roelofs Libpng 1.2.8
Greg Roelofs Libpng 1.2.6
Greg Roelofs Libpng 1.2.7
668
VMScore
CVE-2004-0768
libpng 1.2.5 and previous versions does not properly calculate certain buffer offsets, which could allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Greg Roelofs Libpng3 1.2.3
Greg Roelofs Libpng3 1.2.4
Greg Roelofs Libpng3 1.2.5
Greg Roelofs Libpng3 1.2.0
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng3 1.2.2
668
VMScore
CVE-2002-1363
Portable Network Graphics (PNG) library libpng 1.2.5 and previous versions does not correctly calculate offsets, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.
Greg Roelofs Libpng 1.0.13
Greg Roelofs Libpng 1.0.14
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.0.5
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.11
Greg Roelofs Libpng 1.0.12
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »