Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
libpng 1.5.3 beta
libpng 1.5.8 beta
libpng 1.5.5 beta
libpng 1.5.2 beta
libpng 1.5.4 beta
libpng 1.5.11
libpng 1.5.11 beta
libpng 1.5.12
libpng 1.5.10 beta
libpng 1.5.7 beta
libpng 1.5.13 beta
libpng 1.5.6
libpng 1.5.7
libpng 1.5.8
libpng 1.5.9
libpng 1.5.13
libpng 1.5.6 beta
libpng 1.5.9 beta
libpng 1.5.5
libpng 1.5.4
libpng 1.5.2
libpng 1.5.0 beta
libpng 1.5.1
libpng 1.5.1 beta
Advisory | Patch | Confirmed | Link |
---|---|---|---|
http://sourceforge.net/p/libpng/bugs/199/ | |||
[oss-security] 20140410 CVE-2013-7353 CVE-2013-7354 libp... | |||
openSUSE-SU-2014:0604 | |||
67344 |