Vulnerabilities > Greg Roelofs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-01-17 | CVE-2011-3328 | Unspecified vulnerability in Greg Roelofs Libpng 1.5.4 The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certain zero value. | 2.6 |
| 2006-11-17 | CVE-2006-5793 | Improper Input Validation vulnerability in Greg Roelofs Libpng The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read. | 2.6 |
| 2006-06-30 | CVE-2006-3334 | Buffer Overflow vulnerability in Libpng Graphics Library Chunk Error Processing Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly involving the "chunk_name". | 7.5 |
| 2006-01-31 | CVE-2006-0481 | Buffer Errors vulnerability in Greg Roelofs Libpng 1.2.7 Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image. | 5.0 |
| 2005-11-18 | CVE-2005-3662 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Greg Roelofs Pnmtopng Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors. | 4.6 |
| 2004-11-23 | CVE-2004-0599 | Remote vulnerability in LibPNG Graphics Library Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow remote attackers to cause a denial of service (application crash) via a malformed PNG image. | 5.0 |
| 2004-11-23 | CVE-2004-0598 | Remote vulnerability in LibPNG Graphics Library The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference. | 5.0 |
| 2004-11-23 | CVE-2004-0597 | Remote vulnerability in LibPNG Graphics Library Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking. | 10.0 |
| 2004-10-20 | CVE-2004-0768 | Unspecified vulnerability in Greg Roelofs Libpng3 libpng 1.2.5 and earlier does not properly calculate certain buffer offsets, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |
| 2002-12-26 | CVE-2002-1363 | Buffer Overflow vulnerability in LibPNG Incorrect Offset Calculation Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers. | 7.5 |