Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
optipng project optipng 0.7.6 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-16938
A global buffer overflow in OptiPNG 0.7.6 allows remote malicious users to cause a denial-of-service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolled loop in the LZWReadByte function of the gifread.c file.
Optipng Project Optipng 0.7.6
6.8
CVSSv2
CVE-2017-1000229
Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an malicious user to remotely execute code or cause denial of service.
Optipng Project Optipng 0.7.6
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2015-7802
gifread.c in gif2png, as used in OptiPNG prior to 0.7.6, allows remote malicious users to cause a denial of service (uninitialized memory read) via a crafted GIF file.
Optipng Project Optipng 0.7.5
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
9.3
CVSSv2
CVE-2016-3981
Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG prior to 0.7.6 allows remote malicious users to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file.
Optipng Project Optipng
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2016-3982
Off-by-one error in the bmp_rle4_fread function in pngxrbmp.c in OptiPNG prior to 0.7.6 allows remote malicious users to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file, which triggers a heap-bas...
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Optipng Project Optipng
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started