VulnerableCode Package Details - pkg:deb/ubuntu/libpng@1.2.37-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-2vwq-s4y4-aaae Aliases: CVE-2015-8126	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.	1.2.50-1ubuntu2.14.04.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-52ek-nmkc-aaaf Aliases: CVE-2015-8540	Out-of-bounds Read Integer underflow in the png_check_keyword function in pngwutil.c in libpng allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.	1.2.50-1ubuntu2.14.04.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-7ep2-beej-aaaf Aliases: CVE-2016-10087	NULL Pointer Dereference The png_set_text_2 function in libpng allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and then adding another text chunk to the structure.	1.2.50-1ubuntu2.14.04.3 Affected by 0 other vulnerabilities. 1.2.54-1ubuntu1.1 Affected by 0 other vulnerabilities.
VCID-canc-ytmr-aaae Aliases: CVE-2015-8472	Improper Restriction of Operations within the Bounds of a Memory Buffer Buffer overflow in the png_set_PLTE function in libpng allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8126.	1.2.50-1ubuntu2.14.04.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ef5v-w8g5-aaak Aliases: CVE-2012-3425	Improper Restriction of Operations within the Bounds of a Memory Buffer The png_push_read_zTXt function in pngpread.c in libpng allows remote attackers to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.	1.2.49-1ubuntu1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-t8mn-b96e-aaaj Aliases: CVE-2015-7981	Exposure of Sensitive Information to an Unauthorized Actor The png_convert_to_rfc1123 function in png.c in libpng allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read.	1.2.50-1ubuntu2.14.04.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-2vwq-s4y4-aaae
Aliases:
CVE-2015-8126

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.

1.2.50-1ubuntu2.14.04.1
Affected by 3 other vulnerabilities.

VCID-52ek-nmkc-aaaf
Aliases:
CVE-2015-8540

Out-of-bounds Read Integer underflow in the png_check_keyword function in pngwutil.c in libpng allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.

1.2.50-1ubuntu2.14.04.2
Affected by 1 other vulnerability.

VCID-7ep2-beej-aaaf
Aliases:
CVE-2016-10087

NULL Pointer Dereference The png_set_text_2 function in libpng allows context-dependent attackers to cause a NULL pointer dereference vectors involving loading a text chunk into a png structure, removing the text, and then adding another text chunk to the structure.

1.2.50-1ubuntu2.14.04.3
Affected by 0 other vulnerabilities.

1.2.54-1ubuntu1.1
Affected by 0 other vulnerabilities.

VCID-canc-ytmr-aaae
Aliases:
CVE-2015-8472

Improper Restriction of Operations within the Bounds of a Memory Buffer Buffer overflow in the png_set_PLTE function in libpng allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8126.

1.2.50-1ubuntu2.14.04.2
Affected by 1 other vulnerability.

VCID-ef5v-w8g5-aaak
Aliases:
CVE-2012-3425

Improper Restriction of Operations within the Bounds of a Memory Buffer The png_push_read_zTXt function in pngpread.c in libpng allows remote attackers to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.

1.2.49-1ubuntu1
Affected by 5 other vulnerabilities.

VCID-t8mn-b96e-aaaj
Aliases:
CVE-2015-7981

Exposure of Sensitive Information to an Unauthorized Actor The png_convert_to_rfc1123 function in png.c in libpng allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read.

1.2.50-1ubuntu2.14.04.1
Affected by 3 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Next non-vulnerable version	1.2.50-1ubuntu2.14.04.3
Latest non-vulnerable version	1.2.54-1ubuntu1.1
Risk	4.5