CVE Tools

greg roelofs

OSS Librariesindividual-dev

10

Cumulative CVEs

7

Monthly snapshots

#5

Peak rank

Top products

Latest CVEs

The 12 most recently published vulnerabilities affecting greg roelofs.

CVE-2011-3328The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application cras...2.6Jan 17, 2012
CVE-2006-5793The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a de...2.6Nov 17, 2006
CVE-2006-3334Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng before 1.2.12 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via un...7.5Jun 30, 2006
CVE-2006-0481Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to str...5.0Jan 31, 2006
CVE-2005-3662Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary...4.6Nov 18, 2005
CVE-2002-1363Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitr...7.5Sep 1, 2004
CVE-2004-0768libpng 1.2.5 and earlier does not properly calculate certain buffer offsets, which could allow remote attackers to execute arbitrary code via a buffer overflow attack.7.5Aug 19, 2004
CVE-2004-0599Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow ...5.0Aug 5, 2004
CVE-2004-0598The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.5.0Aug 5, 2004
CVE-2004-0597Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS funct...10.0Aug 5, 2004
CVE-2002-0660Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute ...7.5Aug 10, 2002
CVE-2002-0728Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data...5.0Jul 26, 2002