Filtered by vendor Libpng
Subscriptions
Total
46 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-6129 | 1 Libpng | 1 Libpng | 2024-11-21 | N/A |
| png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer. | ||||
| CVE-2018-14550 | 3 Libpng, Netapp, Oracle | 5 Libpng, Active Iq Unified Manager, Oncommand Api Services and 2 more | 2024-11-21 | 8.8 High |
| An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png. | ||||
| CVE-2018-14048 | 2 Libpng, Oracle | 3 Libpng, Jdk, Jre | 2024-11-21 | 6.5 Medium |
| An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image. | ||||
| CVE-2018-13785 | 4 Canonical, Libpng, Oracle and 1 more | 10 Ubuntu Linux, Libpng, Jdk and 7 more | 2024-11-21 | 6.5 Medium |
| In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service. | ||||
| CVE-2017-12652 | 3 Libpng, Netapp, Redhat | 3 Libpng, Active Iq Unified Manager, Enterprise Linux | 2024-11-21 | 9.8 Critical |
| libpng before 1.6.32 does not properly check the length of chunks against the user limit. | ||||
| CVE-2016-10087 | 1 Libpng | 1 Libpng | 2024-11-21 | N/A |
| The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and then adding another text chunk to the structure. | ||||