CPE-0D2E44E1-919A-4E42-8C0F-D6355EC44EFA Detail

CPE Details

libpng 1.4.22 Beta

Vendor

libpng

Product

libpng

Version

1.4.22

Created

2019-07-11
11h11 +00:00

Modified

2019-07-11
11h11 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:libpng:libpng:1.4.22:beta::::::

Informations

Vendor

libpng

Product

libpng

Version

1.4.22

Update

beta

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2017-12652	2019-07-10 12h10 +00:00	libpng before 1.6.32 does not properly check the length of chunks against the user limit.	9.8	Critical
CVE-2016-3751	2016-07-10 23h00 +00:00	Unspecified vulnerability in libpng before 1.6.20, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01, allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23265085.	7.8	High
CVE-2015-0973	2015-01-18 17h00 +00:00	Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.	7.5
CVE-2014-9495	2015-01-10 18h00 +00:00	Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image.	10
CVE-2013-7353	2014-05-06 12h00 +00:00	Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng before 1.5.14beta08 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a crafted image, which triggers a heap-based buffer overflow.	5
CVE-2013-7354	2014-05-06 12h00 +00:00	Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.	5
CVE-2013-6954	2014-01-12 14h00 +00:00	The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.	5
CVE-2011-3045	2012-03-22 15h00 +00:00	Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.	6.8

libpng 1.4.22 Beta

CPE Details

CPE Name: cpe:2.3:a:libpng:libpng:1.4.22:beta:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:libpng:libpng:1.4.22:beta::::::