CVE-2017-12652

Опубликовано: 10 июл. 2019

Источник: debian

EPSS Низкий

Описание

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

Пакет	Статус	Версия исправления	Релиз	Тип
libpng1.6	fixed	1.6.32-1		package
libpng1.6	ignored		stretch	package

https://github.com/glennrp/libpng/commit/347538efbdc21b8df684ebd92d37400b3ce85d55
https://github.com/glennrp/libpng/commit/a1fe2c98489519d415b72bc0026f0c86d82278b7
https://github.com/glennrp/libpng/commit/095b4ce16bb46acb259ea1a4ca6562a623e58d93
https://github.com/glennrp/libpng/commit/2dbef2f2a9e759a80d2decb6862518acf4919c59
https://github.com/glennrp/libpng/commit/2dca15686fadb1b8951cb29b02bad4cae73448da
https://github.com/glennrp/libpng/commit/fcd1bb93124d76059abef98216d8390f520c577b
https://github.com/glennrp/libpng/commit/13bc0b6b1f8f2f2491fcc9f0c1c939ff06e13c15

EPSS

Процентиль: 65%

0.005

Низкий

CVE-2017-12652

CVSS3: 9.8

ubuntu

почти 6 лет назад

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

CVE-2017-12652

CVSS3: 3.7

redhat

почти 6 лет назад

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

CVE-2017-12652

CVSS3: 9.8

nvd

почти 6 лет назад

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

CVE-2017-12652

CVSS3: 9.8

msrc

4 месяца назад

Описание отсутствует

SUSE-SU-2023:3799-1

suse-cvrf

почти 2 года назад

Security update for libpng15

EPSS

Процентиль: 65%

0.005

Низкий