VYPR
Unrated severityNVD Advisory· Published Jul 22, 2012· Updated Jun 16, 2026

CVE-2011-3464

CVE-2011-3464

Description

Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15
  • Libpng/Libpng15 versions
    cpe:2.3:a:libpng:libpng:1.5.0:beta:*:*:*:*:*:*+ 14 more
    • cpe:2.3:a:libpng:libpng:1.5.0:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.1:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.2:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.3:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.4:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.5:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.6:beta:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.7:*:*:*:*:*:*:*
    • cpe:2.3:a:libpng:libpng:1.5.7:beta:*:*:*:*:*:*
    • (no CPE)range: >=1.5.4, <=1.5.7

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.