| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-2691 | 4.3 |
The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers t
|
13-02-2023 - 04:31 | 17-07-2011 - 20:55 | |
| CVE-2011-2692 | 6.8 |
The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service (memory
|
13-02-2023 - 01:20 | 17-07-2011 - 20:55 | |
| CVE-2009-5063 | 5.0 |
Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative
|
09-09-2020 - 14:51 | 31-08-2011 - 23:55 | |
| CVE-2011-2690 | 6.8 |
Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_expand function, allows remote attackers to overwr
|
06-08-2020 - 15:44 | 17-07-2011 - 20:55 | |
| CVE-2011-2501 | 4.3 |
The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers
|
06-08-2020 - 15:43 | 17-07-2011 - 20:55 | |
| CVE-2011-3026 | 6.8 |
Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation.
|
16-04-2020 - 16:37 | 16-02-2012 - 20:55 | |
| CVE-2011-3045 | 6.8 |
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly exe
|
14-04-2020 - 16:06 | 22-03-2012 - 16:55 | |
| CVE-2011-3048 | 6.8 |
The png_set_text_2 function in pngset.c in libpng 1.0.x before 1.0.59, 1.2.x before 1.2.49, 1.4.x before 1.4.11, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted text chunk i
|
29-12-2017 - 02:29 | 29-05-2012 - 20:55 | |
| CVE-2011-3464 | 7.5 |
Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigge
|
23-07-2012 - 04:00 | 22-07-2012 - 17:55 |