SUSE CVE-2013-6954

🗓️ 15 Feb 2023 05:33:37Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

Vulnerability in libpng before 1.6.8 allows denial of service via zero-byte PLTE or NULL palette.

Reporter	Title	Published	Views	Family All 166
IBM Security Bulletins	Security Bulletins for IBM Tealeaf Customer Experience offerings	16 Jun 201819:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition	15 Jun 201807:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current IBM SDK for Java for IBM Support Assistant April 2014 CPU	15 Jun 201807:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM SDK for Java included with IBM Forms Viewer	16 Jun 201819:52	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Virtualization Engine TS7700 - April 2014	18 Jun 201800:08	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Rational Functional Tester due to IBM SDK, Java Technology Edition Version 1.6 and IBM SDK, Java Technology Edition Version 1.7	29 Sep 201820:06	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerability in IBM Jazz Team Server affects multiple IBM Rational products based on IBM Jazz technology (CVE-2014-2421, CVE-2013-6954, CVE-2013-6629, CVE-2014-0411, CVE-2014-0416)	28 Apr 202118:35	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security exposures in IBM Cognos BI Server (CVE-2013-6954, CVE-2013-6732, CVE-2013-5802, CVE-2013-5825, CVE-2014-0854, CVE-2014-0861)	15 Jun 201823:13	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in current IBM SDK for Java for WebSphere Application Server April 2014 CPU	15 Jun 201807:00	–	ibm
IBM Security Bulletins	Security Bulletin: Potential security vulnerabilities with JavaTM SDKs	22 Sep 202203:02	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Server	11.1	any	java-1_6_0-ibm	1.6.0_sr16.0-0.3.1	java-1_6_0-ibm-1.6.0_sr16.0-0.3.1.noarch.rpm
SUSE Linux Enterprise Server	11.2	any	java-1_6_0-ibm	1.6.0_sr16.0-0.3.1	java-1_6_0-ibm-1.6.0_sr16.0-0.3.1.noarch.rpm
SUSE Linux Enterprise Server	11.3	any	java-1_6_0-ibm	1.6.0_sr16.0-0.3.1	java-1_6_0-ibm-1.6.0_sr16.0-0.3.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11.3	any	java-1_6_0-ibm	1.6.0_sr16.0-0.3.1	java-1_6_0-ibm-1.6.0_sr16.0-0.3.1.noarch.rpm
SUSE Linux Enterprise Server	12	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm
SUSE Linux Enterprise Server	12.3	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm
SUSE Linux Enterprise Server	12.4	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm
SUSE Linux Enterprise Server	12.5	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	12.3	any	java-1_6_0-ibm	1.6.0_sr16.1-5.9	java-1_6_0-ibm-1.6.0_sr16.1-5.9.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2013-6954
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/856522
bugzilla	www.bugzilla.suse.com/873872
bugzilla	www.bugzilla.suse.com/873873
bugzilla	www.bugzilla.suse.com/877429
bugzilla	www.bugzilla.suse.com/877430
lists	www.lists.suse.com/pipermail/sle-security-updates/2014-May/000814.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2014-May/000836.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2014-May/000841.html

27 May 2026 13:24Current

8.8High risk

Vulners AI Score8.8

CVSS 25

CVSS 3.16.5

EPSS0.03546

SSVC

png library zero byte palette chunk null palette denial of service