Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libpng libpng 1.6.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-4214
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.
Libpng Libpng 1.6.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Ontap Select Deploy Administration Utility -
4.3
CVSSv2
CVE-2018-14048
An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.
Libpng Libpng 1.6.34
Oracle Jdk 11.0.0
Oracle Jre 11.0.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
4.3
CVSSv2
CVE-2018-13785
In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service.
Libpng Libpng 1.6.34
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Oracle Jdk 11.0.0
Oracle Jre 11.0.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
5
CVSSv2
CVE-2016-10087
The png_set_text_2 function in libpng 0.71 prior to 1.0.67, 1.2.x prior to 1.2.57, 1.4.x prior to 1.4.20, 1.5.x prior to 1.5.28, and 1.6.x prior to 1.6.27 allows context-dependent malicious users to cause a NULL pointer dereference vectors involving loading a text chunk into a pn...
Libpng Libpng 1.0.5g
Libpng Libpng 1.0.37
Libpng Libpng 0.99e
Libpng Libpng 0.98
Libpng Libpng 1.0.4d
Libpng Libpng 1.0.41
Libpng Libpng 1.0.0b
Libpng Libpng 1.0.1b
Libpng Libpng 1.0.46
Libpng Libpng 0.99d
Libpng Libpng 1.0.4c
Libpng Libpng 1.0.65
Libpng Libpng 1.0.5t
Libpng Libpng 1.0.1
Libpng Libpng 1.0.4e
Libpng Libpng 1.0.1c
Libpng Libpng 1.0.8
Libpng Libpng 0.81
Libpng Libpng 1.0.5n
Libpng Libpng 0.88
Libpng Libpng 1.0.6f
Libpng Libpng 1.0.5k
1 Article
7.5
CVSSv2
CVE-2015-0973
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng prior to 1.5.21 and 1.6.x prior to 1.6.16 allows context-dependent malicious users to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Oracle Solaris 11.2
Libpng Libpng 1.6.0
Libpng Libpng 1.6.1
Libpng Libpng 1.6.2
Libpng Libpng 1.6.10
Libpng Libpng 1.6.11
Libpng Libpng 1.6.4
Libpng Libpng 1.6.5
Libpng Libpng 1.6.6
Libpng Libpng 1.6.7
Libpng Libpng 1.6.14
Libpng Libpng 1.6.15
Libpng Libpng 1.6.3
Libpng Libpng 1.6.8
Libpng Libpng 1.6.9
Libpng Libpng 1.6.13
Libpng Libpng
Libpng Libpng 1.6.12
Apple Mac Os X
10
CVSSv2
CVE-2014-9495
Heap-based buffer overflow in the png_combine_row function in libpng prior to 1.5.21 and 1.6.x prior to 1.6.16, when running on 64-bit systems, might allow context-dependent malicious users to execute arbitrary code via a "very wide interlaced" PNG image.
Apple Mac Os X
Libpng Libpng 1.6.0
Libpng Libpng 1.6.4
Libpng Libpng 1.6.9
Libpng Libpng 1.6.14
Libpng Libpng 1.6.2
Libpng Libpng 1.6.7
Libpng Libpng 1.6.11
Libpng Libpng 1.6.12
Libpng Libpng
Libpng Libpng 1.6.1
Libpng Libpng 1.6.5
Libpng Libpng 1.6.6
Libpng Libpng 1.6.10
Libpng Libpng 1.6.15
Libpng Libpng 1.6.3
Libpng Libpng 1.6.8
Libpng Libpng 1.6.13
1 Github repository
5
CVSSv2
CVE-2014-0333
The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x up to and including 1.6.9 allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero.
Libpng Libpng 1.6.3
Libpng Libpng 1.6.4
Libpng Libpng 1.6.8
Libpng Libpng 1.6.9
Libpng Libpng 1.6.1
Libpng Libpng 1.6.6
Libpng Libpng 1.6.7
Libpng Libpng 1.6.2
Libpng Libpng 1.6.0
Libpng Libpng 1.6.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started