Published: 23/08/2022 Updated: 02/02/2023

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 0

A global buffer overflow exists in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libpng pngcheck 2.4.0
debian debian linux 10.0
debian debian linux 11.0

Debian Bug report logs - #1021278 pngcheck: CVE-2020-35511 Package: src:pngcheck; Maintainer for src:pngcheck is David da Silva Polverari <davidpolverari@gmailcom>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Tue, 4 Oct 2022 19:57:02 UTC Severity: grave Tags: security, upstream Reply or subscribe ...

Multiple security issues were discovered in pngcheck, a tool to verify the integrity of PNG, JNG and MNG files, which could potentially result in the execution of arbitrary code For the stable distribution (bullseye), this problem has been fixed in version 303-1~deb11u1 We recommend that you upgrade your pngcheck packages For the detailed secu ...

CWE-126 http://www.libpng.org/pub/png/apps/pngcheck.html https://www.debian.org/security/2022/dsa-5300 https://lists.debian.org/debian-lts-announce/2022/12/msg00024.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021278 https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5300

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-35511

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect