- Home
- CVEs with nessus.description==Several vulnerabilities have been discovered in libpng, a library for
reading and writing PNG files. The Common Vulnerabilities and
Exposures project identifies the following problems :
- CVE-2009-2042
libpng does not properly parse 1-bit interlaced images
with width values that are not divisible by 8, which
causes libpng to include uninitialized bits in certain
rows of a PNG file and might allow remote attackers to
read portions of sensitive memory via 'out-of-bounds
pixels' in the file.
- CVE-2010-0205
libpng does not properly handle compressed
ancillary-chunk data that has a disproportionately large
uncompressed representation, which allows remote
attackers to cause a denial of service (memory and CPU
consumption, and application hang) via a crafted PNG
file
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top