Greg Roelofs

Libpng

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.6

CVE-2011-3328

Exploit
  • EPSS 3.77%
  • Veröffentlicht 17.01.2012 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:33:05

The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk ...

2.6

CVE-2006-5793

  • EPSS 1.73%
  • Veröffentlicht 17.11.2006 23:07:00
  • Zuletzt bearbeitet 16.06.2026 22:31:53

The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks tha...

7.5

CVE-2006-3334

  • EPSS 3.98%
  • Veröffentlicht 30.06.2006 23:05:00
  • Zuletzt bearbeitet 16.06.2026 22:26:51

Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing,...

5

CVE-2006-0481

  • EPSS 3.01%
  • Veröffentlicht 31.01.2006 18:03:00
  • Zuletzt bearbeitet 16.06.2026 22:20:41

Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image.

10

CVE-2004-0597

Exploit
  • EPSS 82.54%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:57

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transpar...

5

CVE-2004-0598

Exploit
  • EPSS 6.15%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:57

The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.

5

CVE-2004-0599

Exploit
  • EPSS 6.2%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 16.06.2026 22:05:57

Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow remote attackers to cause a denial of service (applic...

7.5

CVE-2002-1363

  • EPSS 6.14%
  • Veröffentlicht 26.12.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:59:10

Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buff...

7.5

CVE-2002-0660

  • EPSS 2.98%
  • Veröffentlicht 12.08.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:53

Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-20...

5

CVE-2002-0728

  • EPSS 2.09%
  • Veröffentlicht 12.08.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:58:01

Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data than indicated by the IHDR chunk.