CVE-2017-11538

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteOnePNGImage function in coders/png.c...

CVE-2017-11539

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage function in coders/png.c...

Memory corruption

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage function in coders/png.c...

CVE-2017-11538

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteOnePNGImage function in coders/png.c...

MS15-024: Vulnerability in PNG processing could allow information disclosure: March 10, 2015

MS15-024: Vulnerability in PNG processing could allow information disclosure: March 10, 2015 Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow information disclosure if an attacker convinces a user to visit a website that contains specially...

USN-3090-2 Pillow regression

USN-3090-1 fixed vulnerabilities in Pillow. The patch to fix CVE-2014-9601 caused a regression which resulted in failures when processing certain png images. This update temporarily reverts the security fix for CVE-2014-9601 pending further investigation. We apologize for the inconvenience...

libpng: Out-of-bounds read in png_convert_to_rfc1123

An array-indexing error was discovered in the pngconverttorfc1123 function of libpng. An attacker could possibly use this flaw to cause an out-of-bounds read by tricking an unsuspecting user into processing a specially crafted PNG image...

MS15-024: Vulnerability in PNG Processing Could Allow Information Disclosure (3035132)

The remote Windows host is affected by an information disclosure vulnerability due to improperly handled uninitialized memory when parsing specially crafted PNG image format files. A remote attacker can exploit this vulnerability by convincing a user to visit a website containing specially crafte...

ImageMagic memory corruption

Memory corruption on PNG processing...

Secunia Research: glpng PNG Processing Two Integer Overflow Vulnerabilities

====================================================================== Secunia Research 11/08/2010 - glpng PNG Processing Two Integer Overflow Vulnerabilities - ====================================================================== Table of Contents Affected...

Windows Media Player PNG Processing (CVE-2004-1244)

Windows Media Player supports rendering of the Portable Network Graphics PNG images. The PNG specification defines a file format that provides a lossless, portable, image compression. Windows Media Player 9 contains a core library wmp.dll for handling the decoding of PNG image files. A...

Microsoft Windows GDI+ PNG Processing Integer Overflow (MS09-062; CVE-2009-3126)

The Windows Graphics Rendering Engine is implemented via the Graphics Device Interface GDI subsystem. GDI is a Microsoft standard for representing graphical objects and outputting these representations to devices such as monitors and printers. GDI is capable of representing vector graphics, drawi...

Microsoft GDI+ Denial Of Service

! /usr/bin/perl CALgdiplugpoc.pl MircosoftgdiplugpnginfinityloopD.o.S POC by Code Audit Labs public 2009-04-17 http://www.vulnhunt.com/ Affected ======== test on full updated winxp sp3 other version should be affected CVE: please assign to a CVE number DESCRIPTION =========== The vulnerability...

OpenJDK: PNG and GIF processing buffer overflow vulnerabilities (6804996, 6804997)

Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...

RHEL 5 : cairo (RHSA-2007:1078)

Updated Cairo packages that resolve a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Cairo is a vector graphics library designed to provide high-quality display and print output...

Fedora Core 6 : php-5.1.6-3.7.fc6 (2007-709)

This update fixes a number of security issues in PHP : - various integer overflow flaws were found in the PHP gd extension. A script that could be forced to resize images from an untrusted source could possibly allow a remote attacker to execute arbitrary code as the apache user. CVE-2007-3996 - ...

GLSA-200708-05 : GD: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200708-05 GD: Multiple vulnerabilities Xavier Roche discovered an infinite loop in the gdPngReadData function when processing a truncated PNG file CVE-2007-2756. An integer overflow has been discovered in the gdImageCreateTrueColo...

Microsoft Windows Media Player PNG Processing Overflow (917734)

Binary data 3650.prm...

See-security advisory: Trillian Basic 3.0 PNG Processing Buffer overflow

See-security Technologies ltd. http://www.see-security.com - Product Information Trillian is a fully featured, stand-alone, skinnable chat client that supports AIM, ICQ, MSN, Yahoo Messenger, and IRC. - Vulnerability Description Trillian contains a buffer overflow vulnerability in the way it pars...

CVE-2004-1244

Windows Media Player 9 allows remote attackers to execute arbitrary code via a PNG file containing large 1 width or 2 height values, aka the "PNG Processing Vulnerability."...