Libpng Security Vulnerabilities and Issues — Libpng CVE List

Lucene search

Greg RoelofsLibpng

3 matches found

CVE•added 2004/09/01 4:0 a.m.•79 views

CVE-2002-1363

Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.

7.5CVSS7.7AI score0.06787EPSS

CVE•added 2002/08/12 4:0 a.m.•69 views

CVE-2002-0660

Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-2002-0728.

7.5CVSS7.4AI score0.00957EPSS

CVE•added 2006/06/30 11:5 p.m.•60 views

CVE-2006-3334

Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunk_name".

7.5CVSS9.6AI score0.01752EPSS