Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-4214

Опубликовано: 24 авг. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 5.5

Описание

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

РелизСтатусПримечание
bionic

not-affected

uses system libpng
devel

not-affected

uses system libpng
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal was not-affected [uses system libpng]
focal

not-affected

uses system libpng
impish

not-affected

uses system libpng
jammy

not-affected

uses system libpng
trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not built
devel

not-affected

code not built
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

not-affected

code not built
impish

not-affected

code not built
jammy

not-affected

code not built
trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

not-affected

code not present
esm-infra/focal

DNE

esm-infra/xenial

not-affected

code not present
focal

DNE

impish

DNE

jammy

DNE

trusty

ignored

end of standard support
trusty/esm

not-affected

code not present

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not shipped
devel

not-affected

code not shipped
esm-apps/xenial

not-affected

code not shipped
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

code not shipped
esm-infra/focal

not-affected

code not shipped
focal

not-affected

code not shipped
impish

not-affected

code not shipped
jammy

not-affected

code not shipped
trusty

DNE

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not built
devel

not-affected

code not built
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

not-affected

code not built
impish

not-affected

code not built
jammy

not-affected

code not built
trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 45%
0.00223
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-4214

CVSS3: 5.5
redhat
больше 6 лет назад

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

nvd логотип

CVE-2021-4214

CVSS3: 5.5
nvd
больше 3 лет назад

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

debian логотип

CVE-2021-4214

CVSS3: 5.5
debian
больше 3 лет назад

A heap overflow flaw was found in libpngs' pngimage.c program. This fl ...

github логотип

GHSA-v3c8-fhq3-xvvh

CVSS3: 5.5
github
больше 3 лет назад

A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

fstec логотип

BDU:2023-05417

CVSS3: 5.5
fstec
больше 3 лет назад

Уязвимость компонента pngimage.c библиотеки libpng, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 45%
0.00223
Низкий

5.5 Medium

CVSS3