VYPR

rpm package

opensuse/libpng16&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/libpng16&distro=openSUSE%20Tumbleweed

Vulnerabilities (30)

  • CVE-2013-6954MedJan 12, 2014
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.

  • CVE-2011-3328Jan 17, 2012
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certain zero

  • CVE-2011-2692HigJul 17, 2011
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service (memory corruption and application cr

  • CVE-2011-2691MedJul 17, 2011
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (a

  • CVE-2011-2690HigJul 17, 2011
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_expand function, allows remote attackers to overwrite memory with an arbitrary a

  • CVE-2011-2501MedJul 17, 2011
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during

  • CVE-2010-1205CriJun 30, 2010
    affected < 1.6.26-1.1fixed 1.6.26-1.1

    Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

  • CVE-2009-0040Feb 22, 2009
    affected < 1.6.37-3.3fixed 1.6.37-3.3

    The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a

  • CVE-2008-3964Sep 11, 2008
    affected < 1.6.37-3.3fixed 1.6.37-3.3

    Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the png_push_read_zTXt function i

  • CVE-2006-5793Nov 17, 2006
    affected < 1.6.37-3.3fixed 1.6.37-3.3

    The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds rea

Page 2 of 2