This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-22 14:49:56 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
57c705d6-12ae-11dd-bab7-0016179b2dd5 | png -- unknown chunk processing uninitialized memory access Secunia reports:
Discovery 2008-04-12 Entry 2008-04-25 Modified 2008-04-29 png < 1.2.27 CVE-2008-1382 28770 http://secunia.com/advisories/29792 http://libpng.sourceforge.net/Advisory-1.2.26.txt |
3a408f6f-9c52-11d8-9366-0020ed76ef5a | libpng denial-of-service Steve Grubb reports a buffer read overrun in libpng's png_format_buffer function. A specially constructed PNG image processed by an application using libpng may trigger the buffer read overrun and possibly result in an application crash. Discovery 2004-04-29 Entry 2004-05-02 Modified 2004-08-12 linux-png le 1.0.14_3 ge 1.2 le 1.2.2 png < 1.2.5_4 CVE-2004-0421 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120508 http://rhn.redhat.com/errata/RHSA-2004-181.html http://secunia.com/advisories/11505 http://www.osvdb.org/5726 10244 |
4cb9c513-03ef-11dc-a51d-0019b95d4f14 | png -- DoS crash vulnerability A Libpng Security Advisory reports:
Discovery 2007-05-15 Entry 2007-05-16 png < 1.2.17 CVE-2007-2445 684664 http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/l/li/libpng/libpng-1.2.17-ADVISORY.txt |
262b92fe-81c8-11e1-8899-001ec9578670 | png -- memory corruption/possible remote code execution The PNG project reports:
Discovery 2012-03-29 Entry 2012-04-08 png linux-f10-png < 1.4.11 CVE-2011-3048 http://www.libpng.org/pub/png/libpng.html |
1886e195-8b87-11e5-90e7-b499baebfeaf | libpng buffer overflow in png_set_PLTE libpng reports:
Discovery 2015-11-15 Entry 2015-11-15 Modified 2015-12-08 png < 1.6.20 http://www.openwall.com/lists/oss-security/2015/11/12/2 http://www.openwall.com/lists/oss-security/2015/12/03/6 CVE-2015-8126 CVE-2015-8472 |
172acf78-780c-11dc-b3f4-0016179b2dd5 | png -- multiple vulnerabilities A Secunia Advisory reports:
Discovery 2007-10-08 Entry 2007-10-11 png < 1.2.22 http://secunia.com/advisories/27093/ http://secunia.com/advisories/27130/ CVE-2007-5267 CVE-2007-5266 CVE-2007-5268 CVE-2007-5269 |
f9e3e60b-e650-11d8-9b0a-000347a4fa7d | libpng stack-based buffer overflow and other code concerns Chris Evans has discovered multiple vulnerabilities in libpng, which can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial of Service). Discovery 2004-08-04 Entry 2004-08-04 Modified 2004-08-15 png le 1.2.5_7 linux-png le 1.0.14_3 ge 1.2 le 1.2.2 firefox < 0.9.3 thunderbird < 0.7.3 linux-mozilla < 1.7.2 linux-mozilla-devel < 1.7.2 mozilla < 1.7.2,2 ge 1.8.a,2 le 1.8.a2,2 mozilla-gtk1 < 1.7.2 netscape-communicator netscape-navigator le 4.78 linux-netscape-communicator linux-netscape-navigator ko-netscape-navigator-linux ko-netscape-communicator-linux ja-netscape-communicator-linux ja-netscape-navigator-linux le 4.8 netscape7 ja-netscape7 le 7.1 pt_BR-netscape7 fr-netscape7 de-netscape7 le 7.02 http://www.securityfocus.com/archive/1/370853 http://scary.beasts.org/security/CESA-2004-001.txt http://www.osvdb.org/8312 http://www.osvdb.org/8313 http://www.osvdb.org/8314 http://www.osvdb.org/8315 http://www.osvdb.org/8316 CVE-2004-0597 CVE-2004-0598 CVE-2004-0599 388984 236656 160448 477512 817368 286464 http://secunia.com/advisories/12219 http://secunia.com/advisories/12232 http://bugzilla.mozilla.org/show_bug.cgi?id=251381 TA04-217A http://dl.sourceforge.net/sourceforge/libpng/ADVISORY.txt |
edef3f2f-82cf-11df-bcce-0018f3e2eb82 | png -- libpng decompression buffer overflow The PNG project describes the problem in an advisory:
Discovery 2010-03-30 Entry 2010-06-28 Modified 2010-06-28 png < 1.4.3 41174 CVE-2010-1205 http://www.libpng.org/pub/png/libpng.html |