Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-gk2b-sstt-2fgh
Summarylibpng: memory leak of png_info struct in pngcp.c
Aliases
0
alias CVE-2019-6129
Fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.39-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uxj6-4181-rygt
1
vulnerability VCID-uxqz-nx2v-6yc5
2
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uxj6-4181-rygt
1
vulnerability VCID-uxqz-nx2v-6yc5
2
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u3%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.56-1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.57-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.57-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.57-1%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3
purl pkg:deb/debian/libpng1.6@1.6.37-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7923-9g38-jqc3
1
vulnerability VCID-7qam-er5a-gbas
2
vulnerability VCID-dm7h-c7wt-1kbs
3
vulnerability VCID-gk2b-sstt-2fgh
4
vulnerability VCID-j7dk-wzkm-tfcr
5
vulnerability VCID-kwag-k17x-kyaj
6
vulnerability VCID-n4kj-urjq-2uav
7
vulnerability VCID-p6b5-1ba6-b3f8
8
vulnerability VCID-ptgq-884e-mkft
9
vulnerability VCID-rm7f-ybuf-dyfq
10
vulnerability VCID-uxj6-4181-rygt
11
vulnerability VCID-uxqz-nx2v-6yc5
12
vulnerability VCID-xyhj-84d1-dqh3
13
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-gk2b-sstt-2fgh
1
vulnerability VCID-uxj6-4181-rygt
2
vulnerability VCID-uxqz-nx2v-6yc5
3
vulnerability VCID-zmjn-418h-ebg8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6129.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6129.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-6129
reference_id
reference_type
scores
0
value 0.00284
scoring_system epss
scoring_elements 0.51731
published_at 2026-04-01T12:55:00Z
1
value 0.00284
scoring_system epss
scoring_elements 0.51877
published_at 2026-04-16T12:55:00Z
2
value 0.00284
scoring_system epss
scoring_elements 0.5185
published_at 2026-04-12T12:55:00Z
3
value 0.00284
scoring_system epss
scoring_elements 0.51835
published_at 2026-04-13T12:55:00Z
4
value 0.00284
scoring_system epss
scoring_elements 0.51781
published_at 2026-04-02T12:55:00Z
5
value 0.00284
scoring_system epss
scoring_elements 0.51806
published_at 2026-04-04T12:55:00Z
6
value 0.00284
scoring_system epss
scoring_elements 0.51767
published_at 2026-04-07T12:55:00Z
7
value 0.00284
scoring_system epss
scoring_elements 0.51822
published_at 2026-04-08T12:55:00Z
8
value 0.00284
scoring_system epss
scoring_elements 0.51819
published_at 2026-04-09T12:55:00Z
9
value 0.00284
scoring_system epss
scoring_elements 0.5187
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-6129
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6129
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6129
3
reference_url https://github.com/glennrp/libpng/issues/269
reference_id
reference_type
scores
url https://github.com/glennrp/libpng/issues/269
4
reference_url https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
reference_id
reference_type
scores
url https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1667127
reference_id 1667127
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1667127
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng:1.6.36:*:*:*:*:*:*:*
reference_id cpe:2.3:a:libpng:libpng:1.6.36:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libpng:libpng:1.6.36:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-6129
reference_id CVE-2019-6129
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-6129
Weaknesses
0
cwe_id 400
name Uncontrolled Resource Consumption
description The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
1
cwe_id 401
name Missing Release of Memory after Effective Lifetime
description The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.
Exploits
Severity_range_score3.3 - 6.5
Exploitability0.5
Weighted_severity5.9
Risk_score3.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-gk2b-sstt-2fgh