Search for packages
Package details: pkg:deb/debian/libpng1.6@1.6.36-6
purl pkg:deb/debian/libpng1.6@1.6.36-6
Next non-vulnerable version 1.6.39-2
Latest non-vulnerable version 1.6.39-2
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-8hwe-kj4e-aaaj
Aliases:
CVE-2018-14048
An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.
1.6.37-3
Affected by 1 other vulnerability.
VCID-pkbe-c1vr-aaaf
Aliases:
CVE-2018-14550
GHSA-qwwr-qc2p-6283
An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.
1.6.37-3
Affected by 1 other vulnerability.
VCID-psuq-h11v-aaae
Aliases:
CVE-2019-6129
** DISPUTED ** png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer."
1.6.39-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-4wrn-uqht-aaan Improper Input Validation libpng does not properly check the length of chunks against the user limit. CVE-2017-12652
VCID-97x6-pdeg-aaah png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. CVE-2019-7317
VCID-guvv-1uwj-aaas In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service. CVE-2018-13785

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:29:19.723753+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:16:46.222639+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:28:13.482051+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:27:24.993854+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-21T14:22:47.351631+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:40:56.590897+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 36.1.3
2025-06-21T12:36:56.871937+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T05:57:07.234043+00:00 Debian Oval Importer Affected by VCID-8hwe-kj4e-aaaj None 36.1.3
2025-06-21T03:53:40.209001+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 36.1.3
2025-06-21T03:26:03.945532+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf None 36.1.3
2025-06-21T03:07:08.285782+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 36.1.3
2025-06-21T02:41:39.209556+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 36.1.3
2025-06-21T01:50:20.720051+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-20T22:08:47.842521+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan None 36.1.3
2025-06-20T21:17:33.958416+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-20T21:10:22.880772+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas None 36.1.3
2025-06-20T21:09:05.246653+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah None 36.1.3
2025-06-08T12:13:40.604530+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:59:50.014728+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:47:53.739566+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:06:36.054022+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:15:52.116162+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:34:26.880159+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T23:35:43.204498+00:00 Debian Oval Importer Affected by VCID-8hwe-kj4e-aaaj None 36.1.0
2025-06-07T20:59:23.914425+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf None 36.1.0
2025-06-07T15:32:45.194582+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan None 36.1.0
2025-06-07T14:35:26.154689+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas None 36.1.0
2025-06-07T14:34:23.613926+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah None 36.1.0
2025-04-12T21:57:43.110182+00:00 Debian Oval Importer Affected by VCID-8hwe-kj4e-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:44:46.206256+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:59:22.974852+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:42:39.361214+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:30:01.953820+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:38:56.700398+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:48:27.348199+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:05:55.341108+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T22:07:46.208655+00:00 Debian Oval Importer Affected by VCID-8hwe-kj4e-aaaj None 36.0.0
2025-04-07T19:29:49.725844+00:00 Debian Oval Importer Affected by VCID-pkbe-c1vr-aaaf None 36.0.0
2025-04-07T14:03:45.331694+00:00 Debian Oval Importer Fixing VCID-4wrn-uqht-aaan None 36.0.0
2025-04-07T13:07:33.034659+00:00 Debian Oval Importer Fixing VCID-guvv-1uwj-aaas None 36.0.0
2025-04-07T13:06:27.473283+00:00 Debian Oval Importer Fixing VCID-97x6-pdeg-aaah None 36.0.0
2025-04-05T10:59:23.174438+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-05T10:13:35.720985+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 36.0.0
2025-04-04T06:42:20.579600+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 36.0.0
2025-04-04T05:54:22.598217+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 36.0.0
2025-04-04T05:28:07.604066+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 36.0.0
2025-04-04T04:35:32.153734+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-03T23:55:44.120136+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-19T10:23:11.880434+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 35.1.0
2025-02-19T10:23:10.525246+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-19T01:36:53.387048+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 35.1.0
2025-02-19T01:36:52.724297+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-19T01:28:22.542837+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 35.1.0
2025-02-19T01:28:21.864861+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-18T20:06:29.467875+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 35.1.0
2024-11-22T07:53:16.415839+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 35.0.0
2024-11-22T07:53:15.735632+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-21T23:05:39.422202+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 35.0.0
2024-11-21T23:05:38.282741+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-21T23:04:42.580025+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 35.0.0
2024-11-21T23:04:41.901693+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-21T17:54:14.648863+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 35.0.0
2024-11-20T06:07:13.676162+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.3.2
2024-11-20T06:07:12.991124+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.3.2
2024-11-19T22:09:58.201208+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.3.2
2024-11-19T22:09:57.509504+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.3.2
2024-11-19T22:09:01.463889+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.3.2
2024-11-19T22:09:00.781790+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.3.2
2024-11-19T17:11:20.695212+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.3.2
2024-10-09T06:55:44.456742+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.0.2
2024-10-09T06:55:43.766607+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-08T23:16:00.744832+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.0.2
2024-10-08T23:16:00.042544+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-08T23:15:07.310330+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.0.2
2024-10-08T23:15:06.613091+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-08T18:47:54.919344+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.0.2
2024-09-18T17:47:53.537070+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.0.1
2024-09-18T17:47:52.856301+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T11:41:29.258777+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.0.1
2024-09-18T11:41:28.586376+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T11:31:36.258684+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.0.1
2024-09-18T11:31:35.583874+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T06:52:32.956137+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.0.1
2024-04-24T16:21:22.293444+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.0.0rc4
2024-04-24T16:21:20.564441+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T12:32:03.667249+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.0.0rc4
2024-04-24T12:32:02.882073+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T12:28:12.927816+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.0.0rc4
2024-04-24T12:28:12.136600+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T10:50:58.068007+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.0.0rc4
2024-01-10T18:30:09.727349+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T18:30:08.168414+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.0.0rc2
2024-01-10T14:25:00.692034+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T14:24:54.590945+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.0.0rc2
2024-01-10T14:22:42.339016+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.0.0rc2
2024-01-10T14:22:40.805846+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T12:42:32.736404+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.0.0rc2
2024-01-04T08:00:15.548210+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T08:00:13.961805+00:00 Debian Importer Affected by VCID-psuq-h11v-aaae None 34.0.0rc1
2024-01-04T05:21:07.971821+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T05:21:02.476972+00:00 Debian Importer Affected by VCID-pkbe-c1vr-aaaf None 34.0.0rc1
2024-01-04T05:20:05.837850+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj None 34.0.0rc1
2024-01-04T05:20:05.052405+00:00 Debian Importer Affected by VCID-8hwe-kj4e-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T04:19:56.328474+00:00 Debian Importer Fixing VCID-4wrn-uqht-aaan None 34.0.0rc1