6.1 Medium
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
0.031 Low
EPSS
Percentile
91.0%
Tavis Ormandy discovered that libpng did not correctly calculate the
size of sPLT structures when reading an image. By tricking a user or an
automated system into processing a specially crafted PNG file, an
attacker could exploit this weakness to crash the application using the
library.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 6.10 | noarch | libpng12-0 | < 1.2.8rel-5.1ubuntu0.1 | UNKNOWN |
Ubuntu | 6.06 | noarch | libpng12-0 | < 1.2.8rel-5ubuntu0.1 | UNKNOWN |
Ubuntu | 5.10 | noarch | libpng10-0 | < 1.0.18-1ubuntu3.1 | UNKNOWN |