Lucene search
Gentoo FoundationMGASA-2014-0075HistoryFeb 16, 2014 - 5:28 p.m.
Updated libpng and libpng12 packages fix security vulnerability
2014-02-1617:28:12
Gentoo Foundation
advisories.mageia.org
17
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.133 Low
EPSS
Percentile
95.5%
The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a PLTE chunk of zero bytes or a NULL palette, related to pngrtran.c and pngset.c (CVE-2013-6954).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | libpng | < 1.5.13-2.1 | libpng-1.5.13-2.1.mga3 |
| Mageia | 3 | noarch | libpng12 | < 1.2.50-3.1 | libpng12-1.2.50-3.1.mga3 |
Related
fedora
fedora
[SECURITY] Fedora 20 Update: libpng15-1.5.17-2.fc20
2014-02-11 23:05:02
[SECURITY] Fedora 20 Update: libpng10-1.0.60-6.fc20
2014-02-07 03:09:47
[SECURITY] Fedora 20 Update: libpng12-1.2.50-6.fc20
2014-02-11 23:05:23
nessus
nessus
Fedora 19 : libpng-1.5.13-3.fc19 (2014-6717)
2014-06-10 00:00:00
Fedora 19 : libpng10-1.0.60-6.fc19 (2014-1754)
2014-02-07 00:00:00
Mandriva Linux Security Advisory : libpng (MDVSA-2014:035)
2014-02-18 00:00:00
ubuntucve
ubuntucve
CVE-2013-6954
2014-01-12 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0076)
2022-01-28 00:00:00
Fedora Update for libpng15 FEDORA-2014-1803
2014-02-13 00:00:00
Fedora Update for libpng12 FEDORA-2014-1766
2014-02-13 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:035 ] libpng
2014-02-18 00:00:00
libpng DoS
2014-02-18 00:00:00
prion
prion
Null pointer dereference
2014-01-12 18:34:00
mageia
mageia
Updated libpng12 package fixes security vulnerability
2014-02-16 17:29:28
cert
cert
libpng 1.6.1 through 1.6.7 contain a null-pointer dereference vulnerability
2014-01-09 00:00:00
ibm
ibm
cve
cve
CVE-2013-6954
2014-01-12 18:34:00
veracode
veracode
Null Pointer Dereference
2019-05-02 04:58:03
Information Disclosure
2019-05-02 04:58:07
Information Disclosure
2019-05-02 04:58:07
redhat
redhat
(RHSA-2014:0508) Critical: java-1.6.0-ibm security update
2014-05-15 00:00:00
(RHSA-2014:0486) Critical: java-1.7.0-ibm security update
2014-05-13 00:00:00
(RHSA-2014:0413) Critical: java-1.7.0-oracle security update
2014-04-17 09:19:33
suse
suse
Security update for IBM Java 6 (important)
2014-06-03 01:04:17
Security update for IBM Java 6 (important)
2014-05-29 01:04:18
Security update for IBM Java 6 (important)
2014-05-30 02:04:33
osv
osv
openjdk-7 - security update
2014-05-05 00:00:00
debian
debian
[SECURITY] [DSA 2923-1] openjdk-7 security update
2014-05-05 14:37:27
aix
aix
kaspersky
kaspersky
thn
thn
Oracle releases Critical Update to Patch 104 Vulnerabilities
2014-04-16 07:48:00
oracle
oracle
Oracle Critical Patch Update - April 2014
2014-04-15 00:00:00
gentoo
gentoo
IcedTea JDK: Multiple vulnerabilities
2014-06-29 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.133 Low
EPSS
Percentile
95.5%
Related for MGASA-2014-0075