Search for packages
| purl | pkg:nuget/libpng@1.6.34 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8hwe-kj4e-aaaj
Aliases: CVE-2018-14048 |
An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image. | There are no reported fixed by versions. |
|
VCID-guvv-1uwj-aaas
Aliases: CVE-2018-13785 |
In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-09-17T22:46:05.286400+00:00 | GitLab Importer | Affected by | VCID-guvv-1uwj-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2018-13785.yml | 34.0.1 |
| 2024-09-17T22:46:05.157096+00:00 | GitLab Importer | Affected by | VCID-8hwe-kj4e-aaaj | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2018-14048.yml | 34.0.1 |
| 2024-01-03T18:07:25.877077+00:00 | GitLab Importer | Affected by | VCID-guvv-1uwj-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2018-13785.yml | 34.0.0rc1 |
| 2024-01-03T18:07:25.760012+00:00 | GitLab Importer | Affected by | VCID-8hwe-kj4e-aaaj | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2018-14048.yml | 34.0.0rc1 |