Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-3045
HistoryMar 20, 2012 - 12:00 a.m.

CVE-2011-3045

2012-03-2000:00:00
ubuntu.com
ubuntu.com
11

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.142 Low

EPSS

Percentile

95.6%

JSON

Integer signedness error in the png_inflate function in pngrutil.c in
libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and
other products, allows remote attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via a crafted PNG
file, a different vulnerability than CVE-2011-3026.

Notes

Author Note
jdstrand firefox and thunderbird 16 are not affected
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlibpng< 1.2.15~beta5-3ubuntu0.6UNKNOWN
ubuntu10.04noarchlibpng< 1.2.42-1ubuntu2.4UNKNOWN
ubuntu10.10noarchlibpng< 1.2.44-1ubuntu0.3UNKNOWN
ubuntu11.04noarchlibpng< 1.2.44-1ubuntu3.3UNKNOWN
ubuntu11.10noarchlibpng< 1.2.46-3ubuntu1.2UNKNOWN
ubuntu12.04noarchlibpng< 1.2.46-3ubuntu3UNKNOWN

Related

cve 1
openvas 85
prion 1
fedora 16
securityvulns 2
nessus 62
veracode 2
redhat 5
ubuntu 2
oraclelinux 5
altlinux 2
centos 2
checkpoint_advisories 2
debian 2
amazon 2
suse 5
cert 1
ubuntucve 1
threatpost 1
cve
cve
CVE-2011-3045
2012-03-22 16:55:00
openvas
openvas
Fedora Update for libpng10 FEDORA-2012-3545
2012-04-02 00:00:00
Fedora Update for libpng FEDORA-2012-3739
2012-03-26 00:00:00
Fedora Update for libpng FEDORA-2012-3739
2012-03-26 00:00:00
prion
prion
Integer overflow
2012-03-22 16:55:00
fedora
fedora
[SECURITY] Fedora 16 Update: libpng-1.2.48-1.fc16
2012-03-24 00:42:16
[SECURITY] Fedora 16 Update: libpng10-1.0.58-1.fc16
2012-03-19 03:24:40
[SECURITY] Fedora 16 Update: libpng-1.2.49-1.fc16
2012-04-24 14:59:35
securityvulns
securityvulns
libpng integer overflow
2012-02-22 00:00:00
Mozilla Foundation Security Advisory 2012-11
2012-02-22 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : libpng vulnerability (USN-1402-1)
2012-03-23 00:00:00
Fedora 16 : libpng-1.2.48-1.fc16 (2012-3739)
2012-03-26 00:00:00
Fedora 15 : libpng10-1.0.58-1.fc15 (2012-3536)
2012-03-19 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:11:53
Denial Of Service (DoS)
2018-11-27 06:57:22
redhat
redhat
(RHSA-2012:0407) Moderate: libpng security update
2012-03-20 00:00:00
(RHSA-2012:0143) Critical: xulrunner security update
2012-02-16 00:00:00
(RHSA-2012:0317) Important: libpng security update
2012-02-20 00:00:00
ubuntu
ubuntu
libpng vulnerability
2012-03-22 00:00:00
Xulrunner vulnerability
2012-02-17 00:00:00
oraclelinux
oraclelinux
libpng security update
2012-03-20 00:00:00
xulrunner security update
2012-02-16 00:00:00
firefox security update
2012-02-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package libpng version 1.2.48-alt1
2012-03-23 00:00:00
Security fix for the ALT Linux 6 package libpng version 1.2.47-alt1
2012-02-20 00:00:00
centos
centos
libpng security update
2012-03-20 23:39:58
libpng, libpng10 security update
2012-02-20 21:59:45
checkpoint_advisories
checkpoint_advisories
libpng png_inflate Buffer Overflow (CVE-2011-3045)
2012-05-14 00:00:00
libpng png_decompress_chunk Integer Overflow (CVE-2011-3026)
2012-05-14 00:00:00
debian
debian
[SECURITY] [DSA 2439-1] libpng security update
2012-03-22 22:22:28
[SECURITY] [DSA 2410-1] libpng security update
2012-02-15 20:44:25
amazon
amazon
Medium: libpng
2012-03-23 14:13:00
Important: libpng
2012-03-04 16:09:00
suse
suse
Security update for Mozilla XULrunner (important)
2012-02-27 01:08:16
libpng12: Fixed a heap based buffer overflow (important)
2012-02-28 22:36:59
mozilla-xulrunner192: 1.9.2.27 (important)
2012-02-24 16:08:11
cert
cert
libpng chunk decompression integer overflow vulnerability
2012-02-23 00:00:00
ubuntucve
ubuntucve
CVE-2011-3026
2012-02-16 00:00:00
threatpost
threatpost
Mozilla to Fix Libpng Bug in Firefox and Thunderbird
2012-02-17 18:43:07

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.142 Low

EPSS

Percentile

95.6%

JSON
Related for UB:CVE-2011-3045
cve1openvas85prion1fedora16securityvulns2nessus62veracode2redhat5ubuntu2oraclelinux5altlinux2centos2checkpoint_advisories2debian2amazon2suse5cert1ubuntucve1threatpost1