Lucene search
Veracode Vulnerability DatabaseVERACODE:3463HistoryFeb 06, 2017 - 8:35 a.m.
Buffer Overflow
2017-02-0608:35:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.12 Low
EPSS
Percentile
95.4%
libpng is vulnerable to buffer overflows. A malicious user can pass a malicious png file to the system to cause an out-of-bounds read that can lead to the system crashing.
References
www.securityfocus.com/bid/78624
bugzilla.redhat.com/show_bug.cgi?id=1281756
github.com/glennrp/libpng/commit/1bef8e97995c33123665582e57d3ed40b57d5978
github.com/glennrp/libpng/commit/81f44665cce4cb1373f049a76f3904e981b7a766
github.com/glennrp/libpng/commit/83f4c735c88e7f451541c1528d8043c31ba3b466
github.com/glennrp/libpng/commit/9f2ad4928e47036cf1ac9b8fe45a491f15be2324
github.com/glennrp/libpng/commit/a901eb3ce6087e0afeef988247f1a1aa208cb54d
Related
nessus
nessus
RHEL 7 : libpng (RHSA-2015:2596)
2015-12-10 00:00:00
openvas
openvas
Fedora Update for libpng10 FEDORA-2015-3461
2015-12-19 00:00:00
Oracle: Security Advisory (ELSA-2015-2596)
2015-12-10 00:00:00
RedHat Update for libpng RHSA-2015:2596-01
2015-12-10 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: libpng10-1.0.65-1.fc23
2015-12-18 07:58:28
[SECURITY] Fedora 22 Update: libpng15-1.5.25-1.fc22
2016-01-04 20:00:05
[SECURITY] Fedora 22 Update: libpng10-1.0.65-1.fc22
2015-12-18 10:01:32
prion
prion
Buffer overflow
2016-01-21 15:59:00
ibm
ibm
mageia
mageia
Updated libpng packages fix security vulnerabilities
2015-12-17 00:01:04
cve
cve
CVE-2015-8472
2016-01-21 15:59:00
f5
f5
SOL81903701 - Libpng vulnerability CVE-2015-8472
2016-03-07 00:00:00
K81903701 : Libpng vulnerability CVE-2015-8472
2016-03-07 00:00:00
nvd
nvd
CVE-2015-8472
2016-01-21 15:59:00
redhat
redhat
(RHSA-2015:2596) Moderate: libpng security update
2015-12-09 13:26:42
(RHSA-2015:2594) Moderate: libpng security update
2015-12-09 00:00:00
(RHSA-2015:2595) Moderate: libpng12 security update
2015-12-09 13:25:59
ubuntu
ubuntu
libpng vulnerabilities
2016-01-06 00:00:00
oraclelinux
oraclelinux
libpng security update
2015-12-09 00:00:00
libpng security update
2015-12-09 00:00:00
libpng12 security update
2015-12-09 00:00:00
cvelist
cvelist
CVE-2015-8472
2016-01-21 15:00:00
archlinux
archlinux
libpng: buffer overflow
2015-12-28 00:00:00
freebsd
freebsd
libpng buffer overflow in png_set_PLTE
2015-11-15 00:00:00
veracode
veracode
Denial-of-Service (DoS) Via Embedded Dependency
2017-02-27 07:42:41
debiancve
debiancve
CVE-2015-8472
2016-01-21 15:59:00
slackware
slackware
[slackware-security] libpng
2015-12-16 06:25:09
cloudfoundry
cloudfoundry
USN-2861-1 libpng vulnerability | Cloud Foundry
2016-01-19 00:00:00
amazon
amazon
Medium: libpng
2015-12-14 10:00:00
ubuntucve
ubuntucve
CVE-2015-8472
2015-12-09 00:00:00
centos
centos
libpng security update
2015-12-09 19:21:36
libpng security update
2015-12-09 14:47:29
libpng12 security update
2015-12-09 19:21:50
debian
debian
[SECURITY] [DSA 3443-1] libpng security update
2016-01-13 21:31:22
[SECURITY] [DSA 3443-1] libpng security update
2016-01-13 21:31:22
[SECURITY] [DLA 375-1] libpng security update
2015-12-27 21:02:26
osv
osv
libpng - security update
2016-01-13 00:00:00
libpng - security update
2015-12-27 00:00:00
openjdk-6 - security update
2016-02-04 00:00:00
suse
suse
Security update for java-1_8_0-openjdk (critical)
2016-01-27 21:11:29
Security update for java-1_7_0-openjdk (critical)
2016-01-28 20:11:13
Security update for java-1_7_0-openjdk (critical)
2016-01-27 21:13:32
rosalinux
rosalinux
Advisory ROSA-SA-2021-1884
2021-07-02 17:16:15
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2016-02-25 08:44:57
apple
apple