CVSS: 6.5EPSS: 7%CPEs: 1EXPL: 1CVE-2011-3328
https://notcve.org/view.php?id=CVE-2011-3328
17 Jan 2012 — The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certain zero value. La función png_handle_cHRM en pngrutil.c en libpng 1.5.4, cuando está habilitado el soporte de corrección de color, permite a un atacante remoto causar una denegación de servicio (error de división por cero y bloqueo de apli... • http://libpng.org/pub/png/libpng.html •
CVSS: 7.5EPSS: 2%CPEs: 18EXPL: 0CVE-2006-5793 – libpng DoS
https://notcve.org/view.php?id=CVE-2006-5793
17 Nov 2006 — The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read. El trozo de sPLT manejador de código (la función png_set_sPLT en pngset.c) en libpng 1.0.6 hasta la 1.2.12 usa un operador de sizeof sobre un tipo de datos erroneo, lo cual permite a un atacante dependiente del contexto provocar ... • http://android-developers.blogspot.com/2008/03/android-sdk-update-m5-rc15-released.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 1%CPEs: 13EXPL: 0CVE-2006-3334
https://notcve.org/view.php?id=CVE-2006-3334
30 Jun 2006 — Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunk_name". Desbordamiento de búfer en la función png_decompress_chunk en pngrutil.c en libpng anteriores a v1.2.12 permite a los atacantes dependientes de contexto causar una denegación de servicios y posiblemente ejecutar arbitrariam... • http://docs.info.apple.com/article.html?artnum=307562 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0CVE-2006-0481
https://notcve.org/view.php?id=CVE-2006-0481
31 Jan 2006 — Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image. • ftp://ftp.simplesystems.org/pub/libpng/png/src/libpng-1.2.8-README.txt • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 31%CPEs: 1EXPL: 2CVE-2004-0598
https://notcve.org/view.php?id=CVE-2004-0598
05 Aug 2004 — The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference. La función png_handle_iCCP en libpng 1.2.5 y anteriores permite a atacantes remotos causar una denegación de servicio (caída de aplicación) mediante una cierta imagen PNG que dispara una desreferencia nula. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856 •
CVSS: 6.5EPSS: 31%CPEs: 1EXPL: 1CVE-2004-0599
https://notcve.org/view.php?id=CVE-2004-0599
05 Aug 2004 — Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow remote attackers to cause a denial of service (application crash) via a malformed PNG image. Múltiples desbordamientos de enteros en las funciónes (1) png_read o (2) png_handle_sPLT o la capacidad (3) visualización progresiva de imagen en libpng 1.2.5 y anteriores permiten a atacantes remotos causar una denegación... • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •
CVSS: 10.0EPSS: 84%CPEs: 7EXPL: 5CVE-2004-0597 – LibPNG 1.2.5 - 'png_jmpbuf()' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2004-0597
05 Aug 2004 — Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking. • https://www.exploit-db.com/exploits/393 •
CVSS: 9.8EPSS: 6%CPEs: 14EXPL: 0CVE-2002-1363
https://notcve.org/view.php?id=CVE-2002-1363
26 Dec 2002 — Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers. • http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:008 •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2002-0660
https://notcve.org/view.php?id=CVE-2002-0660
10 Aug 2002 — Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-2002-0728. • http://rhn.redhat.com/errata/RHSA-2002-151.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2002-0728
https://notcve.org/view.php?id=CVE-2002-0728
26 Jul 2002 — Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data than indicated by the IHDR chunk. Desbordamiento de búfer en la lectura progresiva con libpng 1.2.4 y 1.0.14 permite que atacantes remotos provoquen una denegación de servicio por medio de un stream de datos PNG que tiene más datos IDAT de los que se indican en el chunk IHDR. • ftp://swrinde.nde.swri.edu/pub/png-group/archives/png-list.200207 •