Libpng » Libpng » 1.6.34 : Security Vulnerabilities, CVEs,

cpe:2.3:a:libpng:libpng:1.6.34:*:*:*:*:*:*:*

CVE-2019-7317

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
Max CVSS
5.3
EPSS Score
0.47%
Published
2019-02-04
Updated
2022-05-23

CVE-2018-14048

An issue has been found in libpng 1.6.34. It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image.
Max CVSS
6.5
EPSS Score
0.21%
Published
2018-07-13
Updated
2022-06-27

CVE-2018-13785

In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service.
Max CVSS
6.5
EPSS Score
0.90%
Published
2018-07-09
Updated
2022-06-27
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close