Описание
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.
Отчет
Red Hat Enterprise Linux 5,6,7,8, & 9 are not affected because the pngimage.c program is not shipped with our binary RPMs.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libpng | Not affected | ||
| Red Hat Enterprise Linux 6 | libpng | Not affected | ||
| Red Hat Enterprise Linux 7 | libpng | Not affected | ||
| Red Hat Enterprise Linux 8 | libpng | Not affected | ||
| Red Hat Enterprise Linux 9 | libpng | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.
A heap overflow flaw was found in libpngs' pngimage.c program. This fl ...
A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.
Уязвимость компонента pngimage.c библиотеки libpng, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5.5 Medium
CVSS3