{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","type":"ebuild","namespace":"media-libs","name":"libpng","version":"1.5.10","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.5.21","latest_non_vulnerable_version":"1.6.51","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176698?format=json","vulnerability_id":"VCID-3mf1-u35g-97hu","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2691.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2691.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2691","reference_id":"","reference_type":"","scores":[{"value":"0.07693","scoring_system":"epss","scoring_elements":"0.92101","published_at":"2026-06-11T12:55:00Z"},{"value":"0.07693","scoring_system":"epss","scoring_elements":"0.92127","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2691"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720608","reference_id":"720608","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720608"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2691","reference_id":"CVE-2011-2691","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2691"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-2691"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3mf1-u35g-97hu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176702?format=json","vulnerability_id":"VCID-42vj-c2rw-mubw","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3464.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3464.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3464","reference_id":"","reference_type":"","scores":[{"value":"0.01879","scoring_system":"epss","scoring_elements":"0.83546","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01879","scoring_system":"epss","scoring_elements":"0.83605","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3464"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=843179","reference_id":"843179","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=843179"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3464","reference_id":"CVE-2011-3464","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3464"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-3464"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-42vj-c2rw-mubw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176695?format=json","vulnerability_id":"VCID-4fkc-2mb4-gfbq","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5063.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5063.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5063","reference_id":"","reference_type":"","scores":[{"value":"0.00469","scoring_system":"epss","scoring_elements":"0.65007","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00469","scoring_system":"epss","scoring_elements":"0.65106","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5063"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=690200","reference_id":"690200","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=690200"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://usn.ubuntu.com/1367-1/","reference_id":"USN-1367-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1367-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2009-5063"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4fkc-2mb4-gfbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176696?format=json","vulnerability_id":"VCID-kkp2-zar7-ckan","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2501.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2501.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2501","reference_id":"","reference_type":"","scores":[{"value":"0.02245","scoring_system":"epss","scoring_elements":"0.84931","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02245","scoring_system":"epss","scoring_elements":"0.84983","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2501"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=717084","reference_id":"717084","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=717084"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2501","reference_id":"CVE-2011-2501","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2501"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1105","reference_id":"RHSA-2011:1105","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1105"},{"reference_url":"https://usn.ubuntu.com/1175-1/","reference_id":"USN-1175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-2501"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kkp2-zar7-ckan"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176700?format=json","vulnerability_id":"VCID-ngnu-49wt-rbb8","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3026.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3026.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3026","reference_id":"","reference_type":"","scores":[{"value":"0.43166","scoring_system":"epss","scoring_elements":"0.97584","published_at":"2026-06-11T12:55:00Z"},{"value":"0.43166","scoring_system":"epss","scoring_elements":"0.97593","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=790737","reference_id":"790737","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=790737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3026","reference_id":"CVE-2011-3026","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3026"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-11","reference_id":"mfsa2012-11","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2012-11"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0140","reference_id":"RHSA-2012:0140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0141","reference_id":"RHSA-2012:0141","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0141"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0142","reference_id":"RHSA-2012:0142","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0142"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0143","reference_id":"RHSA-2012:0143","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0143"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0317","reference_id":"RHSA-2012:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0317"},{"reference_url":"https://usn.ubuntu.com/1367-1/","reference_id":"USN-1367-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1367-1/"},{"reference_url":"https://usn.ubuntu.com/1367-2/","reference_id":"USN-1367-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1367-2/"},{"reference_url":"https://usn.ubuntu.com/1367-3/","reference_id":"USN-1367-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1367-3/"},{"reference_url":"https://usn.ubuntu.com/1367-4/","reference_id":"USN-1367-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1367-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-3026"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ngnu-49wt-rbb8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176699?format=json","vulnerability_id":"VCID-pcd7-uafu-5ucj","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2692.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2692.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2692","reference_id":"","reference_type":"","scores":[{"value":"0.07473","scoring_system":"epss","scoring_elements":"0.91959","published_at":"2026-06-11T12:55:00Z"},{"value":"0.07473","scoring_system":"epss","scoring_elements":"0.91986","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2692"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720612","reference_id":"720612","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720612"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2692","reference_id":"CVE-2011-2692","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2692"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1103","reference_id":"RHSA-2011:1103","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1103"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1104","reference_id":"RHSA-2011:1104","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1104"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1105","reference_id":"RHSA-2011:1105","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1105"},{"reference_url":"https://usn.ubuntu.com/1175-1/","reference_id":"USN-1175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-2692"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pcd7-uafu-5ucj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176701?format=json","vulnerability_id":"VCID-pz4g-m7c7-1faa","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3048.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3048.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3048","reference_id":"","reference_type":"","scores":[{"value":"0.16887","scoring_system":"epss","scoring_elements":"0.95109","published_at":"2026-06-11T12:55:00Z"},{"value":"0.16887","scoring_system":"epss","scoring_elements":"0.95125","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3048"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=808139","reference_id":"808139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=808139"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3048","reference_id":"CVE-2011-3048","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3048"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0523","reference_id":"RHSA-2012:0523","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0523"},{"reference_url":"https://usn.ubuntu.com/1417-1/","reference_id":"USN-1417-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1417-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-3048"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pz4g-m7c7-1faa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/176697?format=json","vulnerability_id":"VCID-tr4n-vpxf-8qec","summary":"Multiple vulnerabilities in libpng might allow remote attackers to\n    execute arbitrary code or cause a Denial of Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2690.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2690.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2690","reference_id":"","reference_type":"","scores":[{"value":"0.01256","scoring_system":"epss","scoring_elements":"0.79793","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01256","scoring_system":"epss","scoring_elements":"0.79858","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2690"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720607","reference_id":"720607","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720607"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2690","reference_id":"CVE-2011-2690","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-2690"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1104","reference_id":"RHSA-2011:1104","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1104"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1105","reference_id":"RHSA-2011:1105","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1105"},{"reference_url":"https://usn.ubuntu.com/1175-1/","reference_id":"USN-1175-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1175-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-2690"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tr4n-vpxf-8qec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/154663?format=json","vulnerability_id":"VCID-ubs2-fzpu-j3h9","summary":"Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3045.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3045.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3045","reference_id":"","reference_type":"","scores":[{"value":"0.04462","scoring_system":"epss","scoring_elements":"0.89369","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04462","scoring_system":"epss","scoring_elements":"0.89332","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3045"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html","reference_id":"075424.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html","reference_id":"075619.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html","reference_id":"075981.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html","reference_id":"075987.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html","reference_id":"076461.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html"},{"reference_url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html","reference_id":"076731.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html"},{"reference_url":"http://secunia.com/advisories/48320","reference_id":"48320","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://secunia.com/advisories/48320"},{"reference_url":"http://secunia.com/advisories/48485","reference_id":"48485","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://secunia.com/advisories/48485"},{"reference_url":"http://secunia.com/advisories/48512","reference_id":"48512","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://secunia.com/advisories/48512"},{"reference_url":"http://secunia.com/advisories/48554","reference_id":"48554","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://secunia.com/advisories/48554"},{"reference_url":"http://secunia.com/advisories/49660","reference_id":"49660","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://secunia.com/advisories/49660"},{"reference_url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:033","reference_id":"advisories?name=MDVSA-2012:033","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://www.mandriva.com/security/advisories?name=MDVSA-2012:033"},{"reference_url":"http://src.chromium.org/viewvc/chrome?view=rev&revision=125311","reference_id":"chrome?view=rev&revision=125311","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://src.chromium.org/viewvc/chrome?view=rev&revision=125311"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3045","reference_id":"CVE-2011-3045","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3045"},{"reference_url":"http://code.google.com/p/chromium/issues/detail?id=116162","reference_id":"detail?id=116162","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://code.google.com/p/chromium/issues/detail?id=116162"},{"reference_url":"http://www.debian.org/security/2012/dsa-2439","reference_id":"dsa-2439","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://www.debian.org/security/2012/dsa-2439"},{"reference_url":"https://security.gentoo.org/glsa/201206-15","reference_id":"GLSA-201206-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-15"},{"reference_url":"http://security.gentoo.org/glsa/glsa-201206-15.xml","reference_id":"glsa-201206-15.xml","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://security.gentoo.org/glsa/glsa-201206-15.xml"},{"reference_url":"http://www.securitytracker.com/id?1026823","reference_id":"id?1026823","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://www.securitytracker.com/id?1026823"},{"reference_url":"http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b","reference_id":"libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b"},{"reference_url":"http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html","reference_id":"msg00000.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html"},{"reference_url":"http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html","reference_id":"msg00051.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763","reference_id":"oval%3Aorg.mitre.oval%3Adef%3A14763","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0407","reference_id":"RHSA-2012:0407","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0407"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2012-0407.html","reference_id":"RHSA-2012-0407.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://rhn.redhat.com/errata/RHSA-2012-0407.html"},{"reference_url":"http://rhn.redhat.com/errata/RHSA-2012-0488.html","reference_id":"RHSA-2012-0488.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://rhn.redhat.com/errata/RHSA-2012-0488.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=799000","reference_id":"show_bug.cgi?id=799000","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=799000"},{"reference_url":"http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html","reference_id":"stable-channel-update_21.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/"}],"url":"http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html"},{"reference_url":"https://usn.ubuntu.com/1402-1/","reference_id":"USN-1402-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1402-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/2101?format=json","purl":"pkg:ebuild/media-libs/libpng@1.2.49","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.2.49"},{"url":"http://public2.vulnerablecode.io/api/packages/2102?format=json","purl":"pkg:ebuild/media-libs/libpng@1.5.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}],"aliases":["CVE-2011-3045"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ubs2-fzpu-j3h9"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/libpng@1.5.10"}