Описание
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system libpng |
| hardy | DNE | |
| lucid | not-affected | uses system libpng |
| maverick | not-affected | uses system libpng |
| natty | not-affected | uses system libpng |
| oneiric | not-affected | uses system libpng |
| precise | not-affected | uses system libpng |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | not-affected | |
| maverick | ignored | end of life |
| natty | not-affected | |
| oneiric | not-affected | |
| precise | not-affected | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.2.46-3ubuntu3 |
| hardy | released | 1.2.15~beta5-3ubuntu0.6 |
| lucid | released | 1.2.42-1ubuntu2.4 |
| maverick | released | 1.2.44-1ubuntu0.3 |
| natty | released | 1.2.44-1ubuntu3.3 |
| oneiric | released | 1.2.46-3ubuntu1.2 |
| precise | released | 1.2.46-3ubuntu3 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | not-affected | |
| maverick | ignored | end of life |
| natty | not-affected | |
| oneiric | not-affected | |
| precise | not-affected | |
| upstream | needs-triage |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
Integer signedness error in the png_inflate function in pngrutil.c in ...
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3