Vulnerabilities > CVE-2015-7700 - Double Free vulnerability in Pngcrush Project Pngcrush
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family SuSE Local Security Checks NASL id OPENSUSE-2018-43.NASL description This update for pngcrush fixes the following issues : - CVE-2015-7700: Fix for a double-free vulnerability in the sPLT chunk structure and png.c (boo#1056770) last seen 2020-06-05 modified 2018-01-16 plugin id 106070 published 2018-01-16 reporter This script is Copyright (C) 2018-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/106070 title openSUSE Security Update : pngcrush (openSUSE-2018-43) NASL family Amazon Linux Local Security Checks NASL id ALA_ALAS-2016-646.NASL description A double-free bug was discovered in pngcrush last seen 2020-06-01 modified 2020-06-02 plugin id 88658 published 2016-02-10 reporter This script is Copyright (C) 2016-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/88658 title Amazon Linux AMI : pngcrush (ALAS-2016-646)