CVE-2013-7354

2014-05-06 16:55:05 2016-12-31 03:59:10

Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Libpng - Libpng

Advisory	Patch	Confirmed	Link
			http://sourceforge.net/p/libpng/bugs/199/
			[oss-security] 20140410 CVE-2013-7353 CVE-2013-7354 libp...
			openSUSE-SU-2014:0604
			67344

CVE-2013-7354

2014-05-06 16:55:05 2016-12-31 03:59:10

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)