VulnerableCode Package Details - pkg:ebuild/media-libs/libpng@1.6.37

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-8hwe-kj4e-aaaj	An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.	CVE-2018-14048
VCID-97x6-pdeg-aaah	png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.	CVE-2019-7317
VCID-pkbe-c1vr-aaaf	An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.	CVE-2018-14550 GHSA-qwwr-qc2p-6283

Vulnerability

Summary

Aliases

VCID-8hwe-kj4e-aaaj

An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.

CVE-2018-14048

VCID-97x6-pdeg-aaah

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

CVE-2019-7317

VCID-pkbe-c1vr-aaaf

An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.

CVE-2018-14550
GHSA-qwwr-qc2p-6283

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T12:45:17.403727+00:00	Gentoo Importer	Fixing	VCID-97x6-pdeg-aaah	https://security.gentoo.org/glsa/201908-02	36.0.0
2025-03-28T12:45:17.393337+00:00	Gentoo Importer	Fixing	VCID-pkbe-c1vr-aaaf	https://security.gentoo.org/glsa/201908-02	36.0.0
2025-03-28T12:45:17.382405+00:00	Gentoo Importer	Fixing	VCID-8hwe-kj4e-aaaj	https://security.gentoo.org/glsa/201908-02	36.0.0
2024-09-18T07:39:51.127069+00:00	Gentoo Importer	Fixing	VCID-97x6-pdeg-aaah	https://security.gentoo.org/glsa/201908-02	34.0.1
2024-09-18T07:39:51.109831+00:00	Gentoo Importer	Fixing	VCID-pkbe-c1vr-aaaf	https://security.gentoo.org/glsa/201908-02	34.0.1
2024-09-18T07:39:51.092060+00:00	Gentoo Importer	Fixing	VCID-8hwe-kj4e-aaaj	https://security.gentoo.org/glsa/201908-02	34.0.1
2024-01-04T01:45:53.573111+00:00	Gentoo Importer	Fixing	VCID-97x6-pdeg-aaah	https://security.gentoo.org/glsa/201908-02	34.0.0rc1
2024-01-04T01:45:53.557199+00:00	Gentoo Importer	Fixing	VCID-pkbe-c1vr-aaaf	https://security.gentoo.org/glsa/201908-02	34.0.0rc1
2024-01-04T01:45:53.539957+00:00	Gentoo Importer	Fixing	VCID-8hwe-kj4e-aaaj	https://security.gentoo.org/glsa/201908-02	34.0.0rc1