Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-7317

Опубликовано: 04 фев. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 2.6
CVSS3: 5.3

Описание

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

РелизСтатусПримечание
bionic

released

67.0+build2-0ubuntu0.18.04.1
cosmic

released

67.0+build2-0ubuntu0.18.10.1
devel

released

67.0+build2-0ubuntu1
disco

released

67.0+build2-0ubuntu0.19.04.1
eoan

released

67.0+build2-0ubuntu1
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

67.0+build2-0ubuntu1
groovy

released

67.0+build2-0ubuntu1
hirsute

released

67.0+build2-0ubuntu1

Показывать по

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

code not present
esm-infra/focal

DNE

esm-infra/xenial

not-affected

code not present
focal

DNE

groovy

DNE

Показывать по

РелизСтатусПримечание
bionic

released

1.6.34-1ubuntu0.18.04.2
cosmic

released

1.6.34-2ubuntu0.1
devel

not-affected

1.6.36-5
disco

not-affected

1.6.36-5
eoan

not-affected

1.6.36-5
esm-apps/xenial

needed

esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

1.6.34-1ubuntu0.18.04.2
esm-infra/focal

not-affected

1.6.36-5
focal

not-affected

1.6.36-5

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

disco

ignored

end of life
eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

Показывать по

РелизСтатусПримечание
bionic

released

8u222-b10-1ubuntu1~18.04.1
devel

not-affected

8u222-b10-1ubuntu2
disco

released

8u222-b10-1ubuntu1~19.04.1
eoan

not-affected

8u222-b10-1ubuntu2
esm-apps/bionic

released

8u222-b10-1ubuntu1~18.04.1
esm-apps/focal

not-affected

8u222-b10-1ubuntu2
esm-apps/jammy

not-affected

8u222-b10-1ubuntu2
esm-apps/noble

not-affected

8u222-b10-1ubuntu2
esm-infra-legacy/trusty

DNE

esm-infra/xenial

released

8u222-b10-1ubuntu1~16.04.1

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-apps/xenial

ignored

no longer supported by upstream
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

Показывать по

РелизСтатусПримечание
bionic

released

11.0.4+11-1ubuntu2~18.04.3
devel

not-affected

11.0.4+11-1ubuntu2
disco

released

11.0.4+11-1ubuntu2~19.04
eoan

not-affected

11.0.4+11-1ubuntu2
esm-apps/noble

not-affected

11.0.4+11-1ubuntu2
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

11.0.4+11-1ubuntu2~18.04.3
esm-infra/focal

not-affected

11.0.4+11-1ubuntu2
focal

not-affected

11.0.4+11-1ubuntu2
groovy

not-affected

11.0.4+11-1ubuntu2

Показывать по

РелизСтатусПримечание
bionic

released

1:60.7.0+build1-0ubuntu0.18.04.1
cosmic

released

1:60.7.0+build1-0ubuntu0.18.10.1
devel

released

1:60.7.0+build1-0ubuntu3
disco

released

1:60.7.0+build1-0ubuntu0.19.04.1
eoan

released

1:60.7.0+build1-0ubuntu3
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

released

1:60.7.0+build1-0ubuntu3
groovy

released

1:60.7.0+build1-0ubuntu3
hirsute

released

1:60.7.0+build1-0ubuntu3

Показывать по

Ссылки на источники

EPSS

Процентиль: 68%
0.00576
Низкий

2.6 Low

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-7317

CVSS3: 5.3
redhat
почти 7 лет назад

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

nvd логотип

CVE-2019-7317

CVSS3: 5.3
nvd
почти 7 лет назад

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

msrc логотип

CVE-2019-7317

CVSS3: 5.3
msrc
8 месяцев назад

Описание отсутствует

debian логотип

CVE-2019-7317

CVSS3: 5.3
debian
почти 7 лет назад

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after- ...

github логотип

GHSA-m96g-x499-p5f9

CVSS3: 5.3
github
больше 3 лет назад

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

EPSS

Процентиль: 68%
0.00576
Низкий

2.6 Low

CVSS2

5.3 Medium

CVSS3

Уязвимость CVE-2019-7317