Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2011-2691

Опубликовано: 17 июл. 2011
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

Описание

The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.

РелизСтатусПримечание
devel

not-affected

14.0.835.202~r103287-0ubuntu1
hardy

DNE

lucid

released

14.0.835.202~r103287-0ubuntu0.10.04.2
maverick

released

14.0.835.202~r103287-0ubuntu0.10.10.1
natty

released

14.0.835.202~r103287-0ubuntu0.11.04.1
oneiric

released

14.0.835.202~r103287-0ubuntu1
precise

not-affected

14.0.835.202~r103287-0ubuntu1
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

released

8.0~b4+build1-0ubuntu2
hardy

ignored

end of life
lucid

released

10.0+build1-0ubuntu0.10.04.2
maverick

ignored

end of life
natty

released

8.0+build1-0ubuntu0.11.04.1
oneiric

released

8.0+build1-0ubuntu0.11.10.1
precise

released

8.0~b4+build1-0ubuntu2
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

code not compiled
hardy

not-affected

code not present
lucid

not-affected

code not compiled
maverick

not-affected

code not compiled
natty

not-affected

code not compiled
oneiric

not-affected

code not compiled
precise

not-affected

code not compiled
upstream

released

1.2.45

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03384
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2011-2691

redhat
почти 14 лет назад

The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.

nvd логотип

CVE-2011-2691

CVSS3: 6.5
nvd
почти 14 лет назад

The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.

msrc логотип

CVE-2011-2691

CVSS3: 6.5
msrc
2 месяца назад

Описание отсутствует

debian логотип

CVE-2011-2691

CVSS3: 6.5
debian
почти 14 лет назад

The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2. ...

github логотип

GHSA-vprr-5687-f565

CVSS3: 6.5
github
около 3 лет назад

The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.

EPSS

Процентиль: 87%
0.03384
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3