Optipng@* Security Vulnerabilities and Issues — Optipng@* CVE List

Lucene search

Optipng ProjectOptipng*

4 matches found

CVE•added 2016/04/13 4:59 p.m.•85 views

CVE-2016-3981

Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file.

9.3CVSS8.6AI score0.00699EPSS

CVE•added 2009/03/02 8:30 p.m.•65 views

CVE-2009-0749

Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted GIF image that causes the realloc function to return a new pointer, which tr...

9.3CVSS7.2AI score0.00408EPSS

CVE•added 2016/04/20 4:59 p.m.•54 views

CVE-2015-7801

Use-after-free vulnerability in OptiPNG 0.6.4 allows remote attackers to execute arbitrary code via a crafted PNG file.

9.3CVSS8.6AI score0.06761EPSS

CVE•added 2016/04/13 4:59 p.m.•49 views

CVE-2016-3982

Off-by-one error in the bmp_rle4_fread function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file, which triggers a heap-based buffer overflow.

8.8CVSS8.9AI score0.02288EPSS