8 matches found
Updated libpng packages fix security vulnerabilities
LIBPNG is vulnerable to a heap buffer overflow in pngdoquantize via malformed palette index. CVE-2025-64505 LIBPNG is vulnerable to a heap buffer over-read in pngwriteimage8bit with grayscale+alpha or RGB/RGBA images. CVE-2025-64506 LIBPNG is vulnerable to a buffer overflow in pngimagereadcomposi...
LIBPNG is vulnerable to a heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read`
...
SUSE CVE-2014-9495
Heap-based buffer overflow in the pngcombinerow function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image...
OSV-2017-67 Heap-buffer-overflow in OSS_FUZZ_png_combine_row
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3608 Crash type: Heap-buffer-overflow WRITE Crash state: OSSFUZZpngcombinerow OSSFUZZpngreadrow start...
The vulnerability of the libpng library, which allows a hacker to execute arbitrary code
The vulnerability of the pngcombinerow function in the libpng library arises due to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted PNG file...
SUSE SLED12 / SLES12 Security Update : libpng16 (SUSE-SU-2015:0092-1)
This update fixes the following security issues : - CVE-2014-9495: libpng versions heap overflow vulnerability, that under certain circumstances could be exploit. bnc912076 - CVE-2015-0973: A heap-based overflow was found in the pngcombinerow function of the libpng library, when very large...
CVE-2014-9495
Heap-based buffer overflow in the pngcombinerow function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image...
libpng 'png_combine_row()' buffer overflow vulnerability
libpng is a library of functions for parsing the PNG graphics format used by various applications. A buffer overflow vulnerability exists in libpng 'pngcombinerow' because it fails to properly validate user-supplied input. An attacker could use these vulnerabilities to execute arbitrary code in t...