9.1.1

DATE	CVE	VULNERABILITY TITLE	RISK
2010-06-30	CVE-2010-2249	Memory Leak vulnerability in multiple products Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks. network low complexity libpng apple fedoraproject suse opensuse vmware canonical debian CWE-401	6.5
2010-06-30	CVE-2010-1205	Classic Buffer Overflow vulnerability in multiple products Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row. network low complexity libpng google apple fedoraproject suse opensuse vmware canonical debian mozilla CWE-120 critical	9.8