Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2009-2042 (GCVE-0-2009-2042)
Vulnerability from cvelistv5 – Published: 2009-06-12 20:07 – Updated: 2024-08-07 05:36
VLAI?
EPSS
Summary
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T05:36:20.484Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "SSA:2009-170-01",
"tags": [
"vendor-advisory",
"x_refsource_SLACKWARE",
"x_transferred"
],
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"name": "ADV-2010-0682",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"name": "39206",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/39206"
},
{
"name": "MDVSA-2010:063",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"name": "[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"name": "39251",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/39251"
},
{
"name": "libpng-interlaced-image-info-disclosure(50966)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"name": "35346",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35346"
},
{
"name": "APPLE-SA-2010-03-29-1",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "USN-913-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"name": "DSA-2032",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"name": "35524",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35524"
},
{
"name": "35233",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/35233"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "ADV-2010-0637",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"name": "ADV-2009-1510",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"name": "35594",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35594"
},
{
"name": "39215",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/39215"
},
{
"name": "35470",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35470"
},
{
"name": "GLSA-200906-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"name": "FEDORA-2009-5977",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"name": "FEDORA-2009-6400",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"name": "ADV-2010-0847",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-06-04T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "SSA:2009-170-01",
"tags": [
"vendor-advisory",
"x_refsource_SLACKWARE"
],
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"name": "ADV-2010-0682",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"name": "39206",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/39206"
},
{
"name": "MDVSA-2010:063",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"name": "[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"name": "39251",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/39251"
},
{
"name": "libpng-interlaced-image-info-disclosure(50966)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"name": "35346",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35346"
},
{
"name": "APPLE-SA-2010-03-29-1",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "USN-913-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"name": "DSA-2032",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"name": "35524",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35524"
},
{
"name": "35233",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/35233"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "ADV-2010-0637",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"name": "ADV-2009-1510",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"name": "35594",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35594"
},
{
"name": "39215",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/39215"
},
{
"name": "35470",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35470"
},
{
"name": "GLSA-200906-01",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"name": "FEDORA-2009-5977",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"name": "FEDORA-2009-6400",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"name": "ADV-2010-0847",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-2042",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "SSA:2009-170-01",
"refsource": "SLACKWARE",
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"name": "ADV-2010-0682",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"name": "39206",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39206"
},
{
"name": "MDVSA-2010:063",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"name": "[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "MLIST",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"name": "39251",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39251"
},
{
"name": "libpng-interlaced-image-info-disclosure(50966)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "BUGTRAQ",
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"name": "35346",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35346"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "USN-913-1",
"refsource": "UBUNTU",
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"name": "DSA-2032",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"name": "http://www.libpng.org/pub/png/libpng.html",
"refsource": "CONFIRM",
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"name": "35524",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35524"
},
{
"name": "35233",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/35233"
},
{
"name": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html",
"refsource": "CONFIRM",
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "ADV-2010-0637",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"name": "ADV-2009-1510",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"name": "35594",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35594"
},
{
"name": "39215",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39215"
},
{
"name": "35470",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35470"
},
{
"name": "GLSA-200906-01",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"name": "FEDORA-2009-5977",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"name": "FEDORA-2009-6400",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"name": "ADV-2010-0847",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "FULLDISC",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-2042",
"datePublished": "2009-06-12T20:07:00.000Z",
"dateReserved": "2009-06-12T00:00:00.000Z",
"dateUpdated": "2024-08-07T05:36:20.484Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CERTA-2010-AVI-165
Vulnerability from certfr_avis - Published: 2010-04-13 - Updated: 2010-04-13
Plusieurs vulnérabilités découvertes dans les produits VMware permettent à un utilisateur distant malintentionné de porter atteinte à la confidentialité des données, de réaliser un déni de service, d'élever ses privilèges ou d'exécuter du code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "VMware Worstation 7.x.",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Fusion 2.x ;",
"product": {
"name": "Fusion",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware ACE 2.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Player 3.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Worstation 6.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Player 2.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2009-3707",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3707"
},
{
"name": "CVE-2010-1139",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1139"
},
{
"name": "CVE-2009-1564",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1564"
},
{
"name": "CVE-2010-1141",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1141"
},
{
"name": "CVE-2009-1565",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1565"
},
{
"name": "CVE-2010-1142",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1142"
},
{
"name": "CVE-2009-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2042"
},
{
"name": "CVE-2010-1140",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1140"
},
{
"name": "CVE-2010-1138",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1138"
}
],
"initial_release_date": "2010-04-13T00:00:00",
"last_revision_date": "2010-04-13T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2010-0007.1 du 12 avril 2010 :",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000091.html"
}
],
"reference": "CERTA-2010-AVI-165",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-04-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans les produits VMware permettent\n\u00e0 un utilisateur distant malintentionn\u00e9 de porter atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es, de r\u00e9aliser un d\u00e9ni de service, d\u0027\u00e9lever\nses privil\u00e8ges ou d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2010-0007.1 du 12 avril 2010",
"url": null
}
]
}
CERTA-2010-AVI-143
Vulnerability from certfr_avis - Published: 2010-03-30 - Updated: 2010-03-30
De multiples vulnérabilités ont été corrigées dans Mac OS X.
Description
Plusieurs vulnérabilités ont été corrigées dans Mac OS X. Elles permettent entre autres l'exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Mac OS X 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X 10.6 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.5 ;",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Mac OS X Server 10.6.",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X. Elles\npermettent entre autres l\u0027ex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2010-0511",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0511"
},
{
"name": "CVE-2010-0509",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0509"
},
{
"name": "CVE-2010-0501",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0501"
},
{
"name": "CVE-2010-0065",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0065"
},
{
"name": "CVE-2010-0498",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0498"
},
{
"name": "CVE-2010-0060",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0060"
},
{
"name": "CVE-2008-7247",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-7247"
},
{
"name": "CVE-2003-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0063"
},
{
"name": "CVE-2010-0043",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0043"
},
{
"name": "CVE-2010-0522",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0522"
},
{
"name": "CVE-2010-0063",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0063"
},
{
"name": "CVE-2009-3559",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3559"
},
{
"name": "CVE-2009-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2901"
},
{
"name": "CVE-2009-4142",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4142"
},
{
"name": "CVE-2009-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3009"
},
{
"name": "CVE-2010-0059",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0059"
},
{
"name": "CVE-2010-0524",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0524"
},
{
"name": "CVE-2010-0057",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0057"
},
{
"name": "CVE-2009-2693",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2693"
},
{
"name": "CVE-2010-0521",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0521"
},
{
"name": "CVE-2008-0564",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0564"
},
{
"name": "CVE-2010-0518",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0518"
},
{
"name": "CVE-2010-0513",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0513"
},
{
"name": "CVE-2009-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2417"
},
{
"name": "CVE-2008-0888",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-0888"
},
{
"name": "CVE-2009-3558",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3558"
},
{
"name": "CVE-2009-3095",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3095"
},
{
"name": "CVE-2009-2902",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2902"
},
{
"name": "CVE-2010-0517",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0517"
},
{
"name": "CVE-2010-0535",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0535"
},
{
"name": "CVE-2010-0393",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0393"
},
{
"name": "CVE-2009-3557",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3557"
},
{
"name": "CVE-2009-0580",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0580"
},
{
"name": "CVE-2010-0042",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0042"
},
{
"name": "CVE-2010-0534",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0534"
},
{
"name": "CVE-2010-0497",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0497"
},
{
"name": "CVE-2008-4456",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4456"
},
{
"name": "CVE-2009-4143",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4143"
},
{
"name": "CVE-2010-0058",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0058"
},
{
"name": "CVE-2010-0041",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0041"
},
{
"name": "CVE-2010-0508",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0508"
},
{
"name": "CVE-2010-0506",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0506"
},
{
"name": "CVE-2010-0533",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0533"
},
{
"name": "CVE-2010-0507",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0507"
},
{
"name": "CVE-2010-0504",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0504"
},
{
"name": "CVE-2009-0316",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0316"
},
{
"name": "CVE-2010-0526",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0526"
},
{
"name": "CVE-2010-0510",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0510"
},
{
"name": "CVE-2009-1904",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1904"
},
{
"name": "CVE-2010-0500",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0500"
},
{
"name": "CVE-2008-5302",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5302"
},
{
"name": "CVE-2009-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2042"
},
{
"name": "CVE-2010-0064",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0064"
},
{
"name": "CVE-2009-0033",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0033"
},
{
"name": "CVE-2009-2446",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2446"
},
{
"name": "CVE-2009-2801",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2801"
},
{
"name": "CVE-2010-0525",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0525"
},
{
"name": "CVE-2010-0516",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0516"
},
{
"name": "CVE-2010-0502",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0502"
},
{
"name": "CVE-2010-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0062"
},
{
"name": "CVE-2008-2712",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-2712"
},
{
"name": "CVE-2009-2906",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2906"
},
{
"name": "CVE-2010-0505",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0505"
},
{
"name": "CVE-2008-5303",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5303"
},
{
"name": "CVE-2009-0781",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0781"
},
{
"name": "CVE-2009-4214",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4214"
},
{
"name": "CVE-2009-0783",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0783"
},
{
"name": "CVE-2009-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0689"
},
{
"name": "CVE-2008-5515",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5515"
},
{
"name": "CVE-2006-1329",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1329"
},
{
"name": "CVE-2010-0514",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0514"
},
{
"name": "CVE-2009-0037",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0037"
},
{
"name": "CVE-2010-0515",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0515"
},
{
"name": "CVE-2009-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2422"
},
{
"name": "CVE-2010-0056",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0056"
},
{
"name": "CVE-2010-0512",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0512"
},
{
"name": "CVE-2009-2632",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2632"
},
{
"name": "CVE-2009-0688",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0688"
},
{
"name": "CVE-2008-4101",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-4101"
},
{
"name": "CVE-2010-0537",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0537"
},
{
"name": "CVE-2010-0519",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0519"
},
{
"name": "CVE-2010-0523",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0523"
},
{
"name": "CVE-2010-0520",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0520"
},
{
"name": "CVE-2010-0503",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0503"
},
{
"name": "CVE-2010-0055",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0055"
}
],
"initial_release_date": "2010-03-30T00:00:00",
"last_revision_date": "2010-03-30T00:00:00",
"links": [],
"reference": "CERTA-2010-AVI-143",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-03-30T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Injection de code indirecte \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans Mac OS X.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple MacOS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT4077 du 29 mars 2010",
"url": "http://support.apple.com/kb/HT4077"
}
]
}
CERTA-2010-AVI-162
Vulnerability from certfr_avis - Published: 2010-04-09 - Updated: 2010-04-09
De multiples vulnérabilités affectant les produits VMware ont été publiées. Elles permettent à un utilisateur malveillant d'effcetuer diverses atteintes à la sécurité du système vulnérable.
Description
De multiples vulnérabilités affectant les produits VMware ont été publiées. Elles permettent à un utilisateur malveillant d'effcetuer diverses atteintes à la sécurité du système vulnérable :
- exécution de code arbitraire à distance dans le contexte de l'utilisateur connecté ;
- exécution de code arbitraire ;
- déni de service local ;
- atteinte à la confidentialité des données par utilisation de la pile réseau virtuelle ;
- élévation de privilèges sur des systèmes Windows.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "VMware Server 2.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware VIX API ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Fusion 3.x et 2.x ;",
"product": {
"name": "Fusion",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware ACE 2.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware ESX et ESXi ;",
"product": {
"name": "ESXi",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Workstation 7.x et 6.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "VMware Player 3.x et 2.x ;",
"product": {
"name": "N/A",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s affectant les produits VMware ont \u00e9t\u00e9\npubli\u00e9es. Elles permettent \u00e0 un utilisateur malveillant d\u0027effcetuer\ndiverses atteintes \u00e0 la s\u00e9curit\u00e9 du syst\u00e8me vuln\u00e9rable :\n\n- ex\u00e9cution de code arbitraire \u00e0 distance dans le contexte de\n l\u0027utilisateur connect\u00e9 ;\n- ex\u00e9cution de code arbitraire ;\n- d\u00e9ni de service local ;\n- atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es par utilisation de la pile\n r\u00e9seau virtuelle ;\n- \u00e9l\u00e9vation de privil\u00e8ges sur des syst\u00e8mes Windows.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2009-3707",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3707"
},
{
"name": "CVE-2009-1142",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1142"
},
{
"name": "CVE-2009-1141",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1141"
},
{
"name": "CVE-2010-1139",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1139"
},
{
"name": "CVE-2009-1564",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1564"
},
{
"name": "CVE-2009-1565",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1565"
},
{
"name": "CVE-2009-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3732"
},
{
"name": "CVE-2009-1140",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1140"
},
{
"name": "CVE-2009-2042",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-2042"
},
{
"name": "CVE-2010-1138",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1138"
}
],
"initial_release_date": "2010-04-09T00:00:00",
"last_revision_date": "2010-04-09T00:00:00",
"links": [],
"reference": "CERTA-2010-AVI-162",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2010-04-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s affectant les produits VMware ont \u00e9t\u00e9\npubli\u00e9es. Elles permettent \u00e0 un utilisateur malveillant d\u0027effcetuer\ndiverses atteintes \u00e0 la s\u00e9curit\u00e9 du syst\u00e8me vuln\u00e9rable.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2010-0007 du 09 avril 2010",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
}
]
}
GSD-2009-2042
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2009-2042",
"description": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file.",
"id": "GSD-2009-2042",
"references": [
"https://www.suse.com/security/cve/CVE-2009-2042.html",
"https://www.debian.org/security/2010/dsa-2032",
"https://access.redhat.com/errata/RHSA-2010:0534",
"https://linux.oracle.com/cve/CVE-2009-2042.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2009-2042"
],
"details": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file.",
"id": "GSD-2009-2042",
"modified": "2023-12-13T01:19:46.109922Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-2042",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "SSA:2009-170-01",
"refsource": "SLACKWARE",
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"name": "ADV-2010-0682",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"name": "39206",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39206"
},
{
"name": "MDVSA-2010:063",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"name": "[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "MLIST",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"name": "39251",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39251"
},
{
"name": "libpng-interlaced-image-info-disclosure(50966)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "BUGTRAQ",
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"name": "35346",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35346"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "USN-913-1",
"refsource": "UBUNTU",
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"name": "DSA-2032",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"name": "http://www.libpng.org/pub/png/libpng.html",
"refsource": "CONFIRM",
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"name": "35524",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35524"
},
{
"name": "35233",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/35233"
},
{
"name": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html",
"refsource": "CONFIRM",
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "ADV-2010-0637",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"name": "ADV-2009-1510",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"name": "35594",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35594"
},
{
"name": "39215",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/39215"
},
{
"name": "35470",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35470"
},
{
"name": "GLSA-200906-01",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"name": "FEDORA-2009-5977",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"name": "FEDORA-2009-6400",
"refsource": "FEDORA",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"name": "ADV-2010-0847",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "FULLDISC",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:0.89c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.11:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.11:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.11:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.15:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.22:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta15:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.14:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.14:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.14:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.13:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta04-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta03-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:rc01-1.2.23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta33:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:beta03:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:beta02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta19:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta20:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta25:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta26:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:beta01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:rc02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta03:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.3:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.10:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.10:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.11:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.15:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.19:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.19:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta12:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.12:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.12:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.17:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.19:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.21:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta18:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta13:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.16:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.7:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.7:beta18:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta05:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta04:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta01-1.2.23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:rc01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta4-1.2.21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta3-1.2.21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:beta01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta24:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta29:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta30:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:beta03:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:beta02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta03:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta16:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.16:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.7:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.7:beta17:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta02-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta01-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta03-1.2.23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:beta02-1.2.23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:rc1-1.2.21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:beta04:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta27:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta28:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.24:rc01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:beta05:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:rc01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.2.35",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:0.95:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.15:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.19:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.23:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.21:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta17:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.0:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta14:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.16:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.17:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.9:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.13:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.13:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:beta5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.15:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.0.8:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.10:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.11:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta03:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta02:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:rc01-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.23:beta05-1.2.22:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.21:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.22:beta2-1.2.21:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.20:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta23:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta31:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta32:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:beta3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.19:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.2:beta2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:rc01:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta06:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.26:beta04:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta05:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.25:beta04:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.3:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:libpng:libpng:1.2.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-2042"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "35233",
"refsource": "BID",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/35233"
},
{
"name": "35346",
"refsource": "SECUNIA",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/35346"
},
{
"name": "ADV-2009-1510",
"refsource": "VUPEN",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"name": "http://www.libpng.org/pub/png/libpng.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"name": "FEDORA-2009-6400",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"name": "FEDORA-2009-5977",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"name": "35470",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/35470"
},
{
"name": "35524",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/35524"
},
{
"name": "SSA:2009-170-01",
"refsource": "SLACKWARE",
"tags": [],
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"name": "GLSA-200906-01",
"refsource": "GENTOO",
"tags": [],
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"name": "35594",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/35594"
},
{
"name": "USN-913-1",
"refsource": "UBUNTU",
"tags": [],
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"name": "ADV-2010-0637",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"name": "APPLE-SA-2010-03-29-1",
"refsource": "APPLE",
"tags": [],
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"name": "http://support.apple.com/kb/HT4077",
"refsource": "CONFIRM",
"tags": [],
"url": "http://support.apple.com/kb/HT4077"
},
{
"name": "39215",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/39215"
},
{
"name": "[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "MLIST",
"tags": [],
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"name": "20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues",
"refsource": "FULLDISC",
"tags": [],
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
},
{
"name": "39206",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/39206"
},
{
"name": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"name": "39251",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/39251"
},
{
"name": "DSA-2032",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"name": "ADV-2010-0847",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"name": "MDVSA-2010:063",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"name": "ADV-2010-0682",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"name": "libpng-interlaced-image-info-disclosure(50966)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
}
},
"lastModifiedDate": "2017-08-17T01:30Z",
"publishedDate": "2009-06-12T20:30Z"
}
}
}
GHSA-RH45-M734-J52Q
Vulnerability from github – Published: 2022-05-02 03:31 – Updated: 2022-05-02 03:31
VLAI?
Details
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.
{
"affected": [],
"aliases": [
"CVE-2009-2042"
],
"database_specific": {
"cwe_ids": [
"CWE-200"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2009-06-12T20:30:00Z",
"severity": "MODERATE"
},
"details": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file.",
"id": "GHSA-rh45-m734-j52q",
"modified": "2022-05-02T03:31:12Z",
"published": "2022-05-02T03:31:12Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2042"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"type": "WEB",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"type": "WEB",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"type": "WEB",
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"type": "WEB",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"type": "WEB",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/35346"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/35470"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/35524"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/35594"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/39206"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/39215"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/39251"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"type": "WEB",
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"type": "WEB",
"url": "http://support.apple.com/kb/HT4077"
},
{
"type": "WEB",
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"type": "WEB",
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/35233"
},
{
"type": "WEB",
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2010/0847"
}
],
"schema_version": "1.4.0",
"severity": []
}
FKIE_CVE-2009-2042
Vulnerability from fkie_nvd - Published: 2009-06-12 20:30 - Updated: 2025-04-09 00:30
Severity ?
Summary
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html | ||
| cve@mitre.org | http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html | ||
| cve@mitre.org | http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html | ||
| cve@mitre.org | http://lists.vmware.com/pipermail/security-announce/2010/000090.html | ||
| cve@mitre.org | http://secunia.com/advisories/35346 | Vendor Advisory | |
| cve@mitre.org | http://secunia.com/advisories/35470 | ||
| cve@mitre.org | http://secunia.com/advisories/35524 | ||
| cve@mitre.org | http://secunia.com/advisories/35594 | ||
| cve@mitre.org | http://secunia.com/advisories/39206 | ||
| cve@mitre.org | http://secunia.com/advisories/39215 | ||
| cve@mitre.org | http://secunia.com/advisories/39251 | ||
| cve@mitre.org | http://security.gentoo.org/glsa/glsa-200906-01.xml | ||
| cve@mitre.org | http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809 | ||
| cve@mitre.org | http://support.apple.com/kb/HT4077 | ||
| cve@mitre.org | http://ubuntu.com/usn/usn-913-1 | ||
| cve@mitre.org | http://www.debian.org/security/2010/dsa-2032 | ||
| cve@mitre.org | http://www.libpng.org/pub/png/libpng.html | Patch, Vendor Advisory | |
| cve@mitre.org | http://www.mandriva.com/security/advisories?name=MDVSA-2010:063 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/35233 | Patch | |
| cve@mitre.org | http://www.vmware.com/security/advisories/VMSA-2010-0007.html | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2009/1510 | Patch, Vendor Advisory | |
| cve@mitre.org | http://www.vupen.com/english/advisories/2010/0637 | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2010/0682 | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2010/0847 | ||
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/50966 | ||
| cve@mitre.org | https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html | ||
| cve@mitre.org | https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.vmware.com/pipermail/security-announce/2010/000090.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/35346 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/35470 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/35524 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/35594 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/39206 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/39215 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/39251 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://security.gentoo.org/glsa/glsa-200906-01.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://support.apple.com/kb/HT4077 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://ubuntu.com/usn/usn-913-1 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2010/dsa-2032 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.libpng.org/pub/png/libpng.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2010:063 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/35233 | Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vmware.com/security/advisories/VMSA-2010-0007.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2009/1510 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2010/0637 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2010/0682 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2010/0847 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/50966 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| libpng | libpng | * | |
| libpng | libpng | 0.89c | |
| libpng | libpng | 0.95 | |
| libpng | libpng | 1.0.0 | |
| libpng | libpng | 1.0.1 | |
| libpng | libpng | 1.0.2 | |
| libpng | libpng | 1.0.7 | |
| libpng | libpng | 1.0.7 | |
| libpng | libpng | 1.0.7 | |
| libpng | libpng | 1.0.7 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.8 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.9 | |
| libpng | libpng | 1.0.10 | |
| libpng | libpng | 1.0.10 | |
| libpng | libpng | 1.0.10 | |
| libpng | libpng | 1.0.11 | |
| libpng | libpng | 1.0.11 | |
| libpng | libpng | 1.0.11 | |
| libpng | libpng | 1.0.11 | |
| libpng | libpng | 1.0.11 | |
| libpng | libpng | 1.0.12 | |
| libpng | libpng | 1.0.12 | |
| libpng | libpng | 1.0.12 | |
| libpng | libpng | 1.0.13 | |
| libpng | libpng | 1.0.14 | |
| libpng | libpng | 1.0.15 | |
| libpng | libpng | 1.0.15 | |
| libpng | libpng | 1.0.15 | |
| libpng | libpng | 1.0.15 | |
| libpng | libpng | 1.0.16 | |
| libpng | libpng | 1.0.17 | |
| libpng | libpng | 1.0.17 | |
| libpng | libpng | 1.0.18 | |
| libpng | libpng | 1.0.19 | |
| libpng | libpng | 1.0.19 | |
| libpng | libpng | 1.0.19 | |
| libpng | libpng | 1.0.19 | |
| libpng | libpng | 1.0.19 | |
| libpng | libpng | 1.0.20 | |
| libpng | libpng | 1.0.21 | |
| libpng | libpng | 1.0.21 | |
| libpng | libpng | 1.0.21 | |
| libpng | libpng | 1.0.22 | |
| libpng | libpng | 1.0.22 | |
| libpng | libpng | 1.0.23 | |
| libpng | libpng | 1.0.23 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.0 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.1 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.2 | |
| libpng | libpng | 1.2.3 | |
| libpng | libpng | 1.2.3 | |
| libpng | libpng | 1.2.3 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.10 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.11 | |
| libpng | libpng | 1.2.13 | |
| libpng | libpng | 1.2.13 | |
| libpng | libpng | 1.2.13 | |
| libpng | libpng | 1.2.13 | |
| libpng | libpng | 1.2.14 | |
| libpng | libpng | 1.2.14 | |
| libpng | libpng | 1.2.14 | |
| libpng | libpng | 1.2.14 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.15 | |
| libpng | libpng | 1.2.16 | |
| libpng | libpng | 1.2.16 | |
| libpng | libpng | 1.2.16 | |
| libpng | libpng | 1.2.16 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.17 | |
| libpng | libpng | 1.2.18 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.19 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.20 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.21 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.22 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.23 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.24 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.25 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.26 | |
| libpng | libpng | 1.2.30 | |
| libpng | libpng | 1.2.31 | |
| libpng | libpng | 1.2.33 | |
| libpng | libpng | 1.2.34 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AABEC89B-60F1-4ECB-AA31-FA1BC8C1A8FC",
"versionEndIncluding": "1.2.35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:0.89c:*:*:*:*:*:*:*",
"matchCriteriaId": "9427E9C7-0B51-4066-9428-BE48D8BAD65E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:0.95:*:*:*:*:*:*:*",
"matchCriteriaId": "DE45B563-07B8-4F4E-80B4-C73216DF7295",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6D6B3DAF-DF99-48B2-8E7C-BE8E043D4C24",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "29050958-EFD8-4A79-9022-EF72AAD4EDB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B3CB33B1-71B2-4235-A2C1-FCAEA9844A6A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.7:beta17:*:*:*:*:*:*",
"matchCriteriaId": "AA9ED9B2-D9D4-4200-B387-21A893453E76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.7:beta18:*:*:*:*:*:*",
"matchCriteriaId": "3983C9FC-7546-41BE-8E22-B3471DF9F3AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.7:rc1:*:*:*:*:*:*",
"matchCriteriaId": "BFAB3DFB-58B7-4713-B88B-26424D639B02",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.7:rc2:*:*:*:*:*:*",
"matchCriteriaId": "2131F2BB-80E3-46A0-A0D8-4450C625A525",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "35F2B503-1516-465D-A558-9932BDB3457D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:beta1:*:*:*:*:*:*",
"matchCriteriaId": "C686308E-1A71-40E5-BCDE-5144217D41A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:beta2:*:*:*:*:*:*",
"matchCriteriaId": "D1F37F93-8BE1-4716-B35D-1CB2629867A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:beta3:*:*:*:*:*:*",
"matchCriteriaId": "AF4127BB-2A91-4243-B3ED-10D945B6995A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:beta4:*:*:*:*:*:*",
"matchCriteriaId": "E09AAB1F-14FB-42E9-8983-30D2164EA0E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.8:rc1:*:*:*:*:*:*",
"matchCriteriaId": "50190A04-5CF2-400E-BAE4-9C7F177ECFE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "BA94EAAA-A4D2-4E36-BC69-BBE9644FE970",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta1:*:*:*:*:*:*",
"matchCriteriaId": "AFB264E6-1640-459C-8DD0-C9D72124F125",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta10:*:*:*:*:*:*",
"matchCriteriaId": "2A6E3454-14E2-43C8-8E71-1E800FCBE9D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta2:*:*:*:*:*:*",
"matchCriteriaId": "BA610E96-CE50-46B0-B695-F4A5FA77AB73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta3:*:*:*:*:*:*",
"matchCriteriaId": "30459EAB-E65B-4487-A90F-389477F0BA56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta4:*:*:*:*:*:*",
"matchCriteriaId": "E89FFA90-6AB5-4587-8F40-E7001E4DD470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta5:*:*:*:*:*:*",
"matchCriteriaId": "A2FDACC8-7BFD-477E-A79A-C933CB5C8EFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta6:*:*:*:*:*:*",
"matchCriteriaId": "9139F742-A946-4D2F-9C14-95216C06ED4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta7:*:*:*:*:*:*",
"matchCriteriaId": "0DBCDA70-BB1B-4408-A2F3-ADB7A7B77A25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta8:*:*:*:*:*:*",
"matchCriteriaId": "AA4D368C-C167-4CF3-9013-FFC297D1D977",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:beta9:*:*:*:*:*:*",
"matchCriteriaId": "D3571DD2-5200-48AE-83C9-B1DFF3A1FEAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:rc1:*:*:*:*:*:*",
"matchCriteriaId": "782DFA55-BB92-41CD-A4DF-D986C387EB8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.9:rc2:*:*:*:*:*:*",
"matchCriteriaId": "2601CCF9-3A89-4EEF-9941-894AEAF89F23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "F3A7C96C-8FBB-42B4-937E-3321C939CC87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.10:beta1:*:*:*:*:*:*",
"matchCriteriaId": "BFE11FC5-8A49-434E-B828-AE7C011B03CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.10:rc1:*:*:*:*:*:*",
"matchCriteriaId": "265EC12C-6239-4367-9769-73AC999556F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "94084356-D39B-41B2-AC24-0ADAD0BF5988",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.11:beta1:*:*:*:*:*:*",
"matchCriteriaId": "6DA772E3-B022-4F5E-8D43-C0BE64F187D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.11:beta2:*:*:*:*:*:*",
"matchCriteriaId": "C6589696-904B-4F7B-84F7-0E8D2F0ACFA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.11:beta3:*:*:*:*:*:*",
"matchCriteriaId": "F5CF8EED-F09B-4AB8-A0F1-1F8DBB5385BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.11:rc1:*:*:*:*:*:*",
"matchCriteriaId": "C3909436-175A-4DC7-956F-C0905DA579FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "086C6335-7872-46A7-AEB1-9BE5AE5A788C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.12:beta1:*:*:*:*:*:*",
"matchCriteriaId": "CB0532A8-3F66-49D3-95BF-2E78DB6EC471",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.12:rc1:*:*:*:*:*:*",
"matchCriteriaId": "FED11C9F-4E2D-4364-AEEC-43E61531BA9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "FF8233B1-04A0-4E25-97EE-CF466B48A12E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "FA714E7E-05EF-4598-9324-887BC66C675E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "C5CF3B73-D3B9-4D76-B411-C837BCE0806E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.15:rc1:*:*:*:*:*:*",
"matchCriteriaId": "CEC7C52B-0D8D-4509-B9B5-B12E54EA3A76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.15:rc2:*:*:*:*:*:*",
"matchCriteriaId": "AB0514ED-C8F8-4F15-A40F-04D643F3DB60",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.15:rc3:*:*:*:*:*:*",
"matchCriteriaId": "D77DCDC0-29DD-4BC8-BE30-3A348963F821",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "D1752D91-3468-4E22-B60F-6789B3CBD7B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "F433AA7E-A780-4D45-AD1A-5A4CE1F3FCD1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.17:rc1:*:*:*:*:*:*",
"matchCriteriaId": "C4338C87-B3CB-4CA7-BFAA-ADA1D919F203",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.18:*:*:*:*:*:*:*",
"matchCriteriaId": "93E210A7-489B-4EA7-A840-599523157DD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.19:*:*:*:*:*:*:*",
"matchCriteriaId": "B37565FA-72F5-4063-8D7A-97BC269F020B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.19:rc1:*:*:*:*:*:*",
"matchCriteriaId": "434AED09-680D-43BC-B9CA-E78028035CDC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.19:rc2:*:*:*:*:*:*",
"matchCriteriaId": "009AF32A-19B9-4E56-B5D2-2D19082EF102",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.19:rc3:*:*:*:*:*:*",
"matchCriteriaId": "2643AA61-AB01-4252-8E50-81D5C74F8707",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.19:rc5:*:*:*:*:*:*",
"matchCriteriaId": "02552E07-D9C8-4DF8-AD63-B3A7B5C2C2DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "BC8FA821-818E-4BC7-834B-94EB5C042390",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.21:*:*:*:*:*:*:*",
"matchCriteriaId": "F3FBF3D3-95A6-4869-8A69-F0E5ECA40220",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.21:rc1:*:*:*:*:*:*",
"matchCriteriaId": "425B207B-D11B-468B-A2C6-BDF276AE4264",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.21:rc2:*:*:*:*:*:*",
"matchCriteriaId": "F8B0055B-D0F1-4D8C-AE96-06315FFCC602",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.22:*:*:*:*:*:*:*",
"matchCriteriaId": "D07785D0-E995-4208-AB8C-43B320D291F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.22:rc1:*:*:*:*:*:*",
"matchCriteriaId": "A42AC8B9-BEB2-4495-8A42-2AEDB29A3DA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.23:*:*:*:*:*:*:*",
"matchCriteriaId": "152DDD6E-CF56-4E1C-BE4D-C7BC0FD9B08C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.0.23:rc1:*:*:*:*:*:*",
"matchCriteriaId": "76C2D14E-FD1C-430A-AC08-D61F997D8BA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C036011A-9AE1-423C-8B73-188B9BA20FEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "F008946C-43E9-4ECD-AE9F-486A4686AE87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "6A4D6BB0-8E1A-49A4-BBC9-CBFA252C92A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:beta3:*:*:*:*:*:*",
"matchCriteriaId": "CFE1DB59-0A60-432B-9D88-906C4FE6D6B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:beta4:*:*:*:*:*:*",
"matchCriteriaId": "C111BDD4-2A52-4FB7-8D21-6049A10BCDA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:beta5:*:*:*:*:*:*",
"matchCriteriaId": "6B33807C-8E7B-4A04-BE92-59C1B845AD42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B1614466-8EAC-4404-A674-EFFE0FFFBDC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "663C6EE5-5B5E-4C0F-9E7F-D0E1DA9AF9EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:beta1:*:*:*:*:*:*",
"matchCriteriaId": "FF2D5068-5BF3-425C-8B1A-E12E3D3CD8F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:beta2:*:*:*:*:*:*",
"matchCriteriaId": "BF4F7833-4F88-4C54-AEC7-3C4FB797AE38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:beta3:*:*:*:*:*:*",
"matchCriteriaId": "F2A973ED-CA5B-4A18-ACAB-1542E3866896",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:beta4:*:*:*:*:*:*",
"matchCriteriaId": "FA737702-6335-42F9-99B9-856D531B70F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "8EAD9719-2736-40AE-BBEB-8BA627E8DF7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.1:rc2:*:*:*:*:*:*",
"matchCriteriaId": "62693E5F-2EF6-49B5-9946-42CE61F4ACFC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "8051459E-94D3-4D4A-9D40-CC9475DDB00C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta1:*:*:*:*:*:*",
"matchCriteriaId": "65ACA253-BDE7-4CAE-8F74-71EBA4728358",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta2:*:*:*:*:*:*",
"matchCriteriaId": "9C776F58-A76E-4ED3-825B-52ADFB38D0E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta3:*:*:*:*:*:*",
"matchCriteriaId": "FF62B46E-37C4-426A-8854-E961BEB543E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta4:*:*:*:*:*:*",
"matchCriteriaId": "C5EDDB54-70C6-41D0-AC5C-C10F8D107964",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta5:*:*:*:*:*:*",
"matchCriteriaId": "CAEAB037-F146-444F-A867-D08BD48DA6F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:beta6:*:*:*:*:*:*",
"matchCriteriaId": "4962A86F-C9F5-4F03-AFCD-D2E6FD08BD06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "47CF2A43-2D15-4D70-A424-C12053D1A6A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "42056C63-69A7-43CF-828C-0C3E365702D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.3:rc3:*:*:*:*:*:*",
"matchCriteriaId": "C6577A0A-B689-424E-BAAE-BD5DF2615311",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.3:rc6:*:*:*:*:*:*",
"matchCriteriaId": "511E1319-C882-4761-ACD5-84617B78578E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:*:*:*:*:*:*:*",
"matchCriteriaId": "9A3E3BF3-4376-4692-A515-A7B6593F28F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta1:*:*:*:*:*:*",
"matchCriteriaId": "9E83B68F-B0E2-4C37-A711-1714652AB961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta2:*:*:*:*:*:*",
"matchCriteriaId": "4F17A4B7-99C2-407A-9536-4B54EDC02899",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta3:*:*:*:*:*:*",
"matchCriteriaId": "F854F244-78C9-46C6-8862-1DA58912FCE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta4:*:*:*:*:*:*",
"matchCriteriaId": "9A4C883A-A2A3-4D5F-8114-CE9220FFF7B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta5:*:*:*:*:*:*",
"matchCriteriaId": "3544F0FF-3EEE-4902-B412-EB57D6AE7A4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta6:*:*:*:*:*:*",
"matchCriteriaId": "5F428FF4-21A8-4605-AFCD-E78F43E46AE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:beta7:*:*:*:*:*:*",
"matchCriteriaId": "7132AA21-DC2F-4493-9BCC-27E3D8F075AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B65F8362-934F-452D-8E86-0DB2E3C7B43D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:rc2:*:*:*:*:*:*",
"matchCriteriaId": "934D0AB5-62FB-4EC1-971A-A1BA8EEAD008",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.10:rc3:*:*:*:*:*:*",
"matchCriteriaId": "5891F237-D1DB-4CCE-8A8B-D10E7EDCB926",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:*:*:*:*:*:*:*",
"matchCriteriaId": "AB6AF9D5-CE60-4FC9-91AB-E243F0D429E9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:beta1:*:*:*:*:*:*",
"matchCriteriaId": "E114E18D-2882-4843-9356-279C69ABCBA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:beta2:*:*:*:*:*:*",
"matchCriteriaId": "5E271694-B8C8-4BCF-8B4A-0425BA50EF6A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:beta3:*:*:*:*:*:*",
"matchCriteriaId": "E36CC085-34FF-4B84-8628-74BEEC686C88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:beta4:*:*:*:*:*:*",
"matchCriteriaId": "06793BE6-3370-4FCB-A400-C6AF95D1E66D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:rc1:*:*:*:*:*:*",
"matchCriteriaId": "DE742D36-3A33-4316-8326-FA2F1B228E83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:rc2:*:*:*:*:*:*",
"matchCriteriaId": "25D0C5E1-4D8D-42EE-8C94-12D442181DCF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:rc3:*:*:*:*:*:*",
"matchCriteriaId": "3326F984-8312-4E7F-A269-0A06FAC8BE25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.11:rc5:*:*:*:*:*:*",
"matchCriteriaId": "290CF6FC-3BD6-4974-9DEC-188B79DC816A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.13:*:*:*:*:*:*:*",
"matchCriteriaId": "7F848FA5-9682-454F-A9DE-671C4401F15F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.13:beta1:*:*:*:*:*:*",
"matchCriteriaId": "782ABB64-C2F2-4326-A69F-75E514055C38",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.13:rc1:*:*:*:*:*:*",
"matchCriteriaId": "0EF9CEE2-8DB6-480F-970C-E19FEF31D0A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.13:rc2:*:*:*:*:*:*",
"matchCriteriaId": "28C13A65-C0D6-4904-8C92-E5233D7E5CC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.14:*:*:*:*:*:*:*",
"matchCriteriaId": "C4B83678-98A1-440E-950C-4A27995C7294",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.14:beta1:*:*:*:*:*:*",
"matchCriteriaId": "38993FC7-12DD-4D75-8EC6-719C0AD66191",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.14:beta2:*:*:*:*:*:*",
"matchCriteriaId": "0CAF82B9-020B-48FD-BE3D-70B8A7A8CDA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.14:rc1:*:*:*:*:*:*",
"matchCriteriaId": "C43481DF-59C5-4E9B-8CB9-49E4873B7263",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:*:*:*:*:*:*:*",
"matchCriteriaId": "FB9EEE31-479A-4370-BF00-C26C1AF502B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta1:*:*:*:*:*:*",
"matchCriteriaId": "BFFC71CB-0B01-4A34-85B8-8A27C1E7D451",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta2:*:*:*:*:*:*",
"matchCriteriaId": "EC53C1C7-ED9C-44C2-B446-0426E4C92D16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta3:*:*:*:*:*:*",
"matchCriteriaId": "B996835E-97DB-47B1-80B9-BE757680CAFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta4:*:*:*:*:*:*",
"matchCriteriaId": "AC7256E6-502A-47A5-A692-90162AA40AAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta5:*:*:*:*:*:*",
"matchCriteriaId": "53E7BDBC-5BF8-4BA3-959D-1D16ACD558D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:beta6:*:*:*:*:*:*",
"matchCriteriaId": "79B6B4A0-9B7E-4835-9F82-2B1D1AF955AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:rc1:*:*:*:*:*:*",
"matchCriteriaId": "27BBC74C-51A3-48BB-B867-3A5F58AD8B4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:rc2:*:*:*:*:*:*",
"matchCriteriaId": "3DEDAB32-9D5C-4F12-B9E4-ABEA615DC11B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:rc3:*:*:*:*:*:*",
"matchCriteriaId": "C3DA5585-140C-4F27-8654-BCFCB12659B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:rc4:*:*:*:*:*:*",
"matchCriteriaId": "AA8F6085-9769-44DE-8E43-FAB7C7791A77",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.15:rc5:*:*:*:*:*:*",
"matchCriteriaId": "5A4D700F-AA36-4A5B-8BD3-3BD9A452D743",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.16:*:*:*:*:*:*:*",
"matchCriteriaId": "95EABD7D-1F18-4FA5-BAA9-F8D69129E531",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.16:beta1:*:*:*:*:*:*",
"matchCriteriaId": "D6045135-54AF-4B83-9279-47BB1DB67172",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.16:beta2:*:*:*:*:*:*",
"matchCriteriaId": "DBB7D1F1-7959-4459-827C-90B193F58269",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.16:rc1:*:*:*:*:*:*",
"matchCriteriaId": "62A6F2F0-E088-458F-813F-5B45EA01B77F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:*:*:*:*:*:*:*",
"matchCriteriaId": "65B836CA-3740-48B0-966B-21E65EF3D636",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:beta1:*:*:*:*:*:*",
"matchCriteriaId": "96308F2E-E2DE-4C0F-B0A6-7FDFFF67A0A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:beta2:*:*:*:*:*:*",
"matchCriteriaId": "7A21785C-989F-4E72-932B-E77892EF492A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:rc1:*:*:*:*:*:*",
"matchCriteriaId": "0D832C4A-0793-4B64-944D-086CF614CAEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:rc2:*:*:*:*:*:*",
"matchCriteriaId": "7C8E2232-7077-4CE4-9141-80F2F744F0B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:rc3:*:*:*:*:*:*",
"matchCriteriaId": "38CDA418-F580-4625-9D84-F01EA5D0FC5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.17:rc4:*:*:*:*:*:*",
"matchCriteriaId": "D0FB8DC5-ABD5-41BE-99EC-E610504D6F50",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.18:*:*:*:*:*:*:*",
"matchCriteriaId": "3988FA1B-18D9-46AA-87BA-A6B01D4F4B25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:*:*:*:*:*:*:*",
"matchCriteriaId": "51A46409-7AC6-45DB-B92D-29988C445BC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta1:*:*:*:*:*:*",
"matchCriteriaId": "53B41406-956A-48C9-9CDA-D7257D19E6F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta10:*:*:*:*:*:*",
"matchCriteriaId": "B100CFD4-788C-44BF-A55D-225F72314A1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta11:*:*:*:*:*:*",
"matchCriteriaId": "7B6BFCBC-F3E9-4CDD-833F-01D51594B0F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta12:*:*:*:*:*:*",
"matchCriteriaId": "589DC20E-E642-4BC7-83CD-01323D7F6236",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta13:*:*:*:*:*:*",
"matchCriteriaId": "6A9B81C1-EAF8-44B6-A4FD-2568FFBB6FEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta14:*:*:*:*:*:*",
"matchCriteriaId": "22EBF19B-7E53-4627-AE87-6B7C4ACD88F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta15:*:*:*:*:*:*",
"matchCriteriaId": "43744C82-D271-4BF3-9AD8-A48C1B5BA33F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta16:*:*:*:*:*:*",
"matchCriteriaId": "FD68995C-816C-4E25-B8B3-0BC808490D73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta17:*:*:*:*:*:*",
"matchCriteriaId": "6EDC3AE7-569F-4016-B35E-E8B8B3456959",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta18:*:*:*:*:*:*",
"matchCriteriaId": "17068432-BFE0-4BE1-A86B-7D6562D18103",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta19:*:*:*:*:*:*",
"matchCriteriaId": "A0F0F2AF-748A-411A-8B95-45A04800FF72",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta2:*:*:*:*:*:*",
"matchCriteriaId": "945C0B80-E562-4495-849E-23EE406D2EA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta20:*:*:*:*:*:*",
"matchCriteriaId": "5E91B287-CDFC-4791-95D5-54AC847877D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta21:*:*:*:*:*:*",
"matchCriteriaId": "1F09C15E-E20C-473D-AF13-5509669DA8FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta22:*:*:*:*:*:*",
"matchCriteriaId": "36FD7096-C215-4CCA-B0BE-244E9708E947",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta23:*:*:*:*:*:*",
"matchCriteriaId": "4AC8DAFE-64A5-47C6-BE99-093E744181B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta24:*:*:*:*:*:*",
"matchCriteriaId": "C075C36D-D191-4165-A2A8-A8BA6AD93862",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta25:*:*:*:*:*:*",
"matchCriteriaId": "F7E9A4DE-C0B7-4951-97D2-26EFFE065A5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta26:*:*:*:*:*:*",
"matchCriteriaId": "6B9FC583-AA79-4ED1-924B-DE58FBB88385",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta27:*:*:*:*:*:*",
"matchCriteriaId": "727FA534-FB49-4784-A56E-D709071FFEE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta28:*:*:*:*:*:*",
"matchCriteriaId": "17628553-688B-4574-9B2A-035937225DD5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta29:*:*:*:*:*:*",
"matchCriteriaId": "E96F2F5A-A881-4EDC-965F-43984EA06151",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta3:*:*:*:*:*:*",
"matchCriteriaId": "26E9442B-FCA7-42A3-9E73-343D9FF11985",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta30:*:*:*:*:*:*",
"matchCriteriaId": "1EB24053-49FC-488C-8DC4-12F5A485EC39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta31:*:*:*:*:*:*",
"matchCriteriaId": "653700ED-B2E3-4DD1-99A1-ED0B4504E628",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta32:*:*:*:*:*:*",
"matchCriteriaId": "2C9B4D07-8B90-4932-8A37-D204995E85E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta33:*:*:*:*:*:*",
"matchCriteriaId": "D9F43544-D08D-4733-AE0D-A6C5742275D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta4:*:*:*:*:*:*",
"matchCriteriaId": "101240B5-FAC7-4D47-9C4A-840D06E082EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta5:*:*:*:*:*:*",
"matchCriteriaId": "608088FF-8EED-4F05-96EA-0E23F669C078",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta6:*:*:*:*:*:*",
"matchCriteriaId": "82401AB8-5432-4D75-ADC2-A310132EB9C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta7:*:*:*:*:*:*",
"matchCriteriaId": "CECEDABC-F229-43F7-9795-9E87198424D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta8:*:*:*:*:*:*",
"matchCriteriaId": "712E5798-A0FC-44E7-972A-D2EF66F5C793",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:beta9:*:*:*:*:*:*",
"matchCriteriaId": "82690AE3-BFFA-4616-AE30-35A6D21DFC1E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc1:*:*:*:*:*:*",
"matchCriteriaId": "4D0082F7-DDD3-4266-B604-D1E2958ABAE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc2:*:*:*:*:*:*",
"matchCriteriaId": "00A32AD4-38C7-41BE-8042-9BCED336AA42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc3:*:*:*:*:*:*",
"matchCriteriaId": "BC96DBDE-15A7-4C63-8C71-AA5CD158E306",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc4:*:*:*:*:*:*",
"matchCriteriaId": "834A6D33-2334-4361-92CE-8AECAF3614CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc5:*:*:*:*:*:*",
"matchCriteriaId": "AFC3A80A-4C35-419F-B576-40A3FAD37723",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.19:rc6:*:*:*:*:*:*",
"matchCriteriaId": "D0FCC174-9216-433D-A5CB-A7C275DD9D94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:*:*:*:*:*:*:*",
"matchCriteriaId": "09E2B608-6C70-446F-A3A7-369048D99855",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:beta01:*:*:*:*:*:*",
"matchCriteriaId": "01EF52B3-BAD3-4E0C-B19C-3465A036B025",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:beta02:*:*:*:*:*:*",
"matchCriteriaId": "1685F3BF-635D-43DD-855D-7666D807AE3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:beta03:*:*:*:*:*:*",
"matchCriteriaId": "BAA8FF97-98D2-425F-935C-36951DFEE029",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:beta04:*:*:*:*:*:*",
"matchCriteriaId": "1CEE9078-6B9F-4BA1-A6BE-25743B02FE25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc1:*:*:*:*:*:*",
"matchCriteriaId": "BE1A8933-9958-458B-A511-D018B7CA7D57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc2:*:*:*:*:*:*",
"matchCriteriaId": "100BF4B6-2A63-416A-B19F-722A9B44F126",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc3:*:*:*:*:*:*",
"matchCriteriaId": "4DD8FB59-2260-4343-B4D6-279ED7D7D5E9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc4:*:*:*:*:*:*",
"matchCriteriaId": "FDDCE2DE-94B7-460D-8BBB-26ACA4847807",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc5:*:*:*:*:*:*",
"matchCriteriaId": "A812C450-8E1F-4667-99EC-7237E1E319E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.20:rc6:*:*:*:*:*:*",
"matchCriteriaId": "AD94AB7F-B7CF-42B0-AB71-23F42F3F1067",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:*:*:*:*:*:*:*",
"matchCriteriaId": "5AA00AE0-F447-4361-AA37-0C98BDE491E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:beta1:*:*:*:*:*:*",
"matchCriteriaId": "28F79E9F-4AA1-451A-8819-CAF21DB2C990",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:beta2:*:*:*:*:*:*",
"matchCriteriaId": "7E1C14E8-5644-4B5F-8894-092187B1EE28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:rc1:*:*:*:*:*:*",
"matchCriteriaId": "77C9B755-140B-4DBF-8BF1-80431C0F9A54",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:rc2:*:*:*:*:*:*",
"matchCriteriaId": "599CE5F2-5D31-4A9D-86A0-9CFD3A34B193",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.21:rc3:*:*:*:*:*:*",
"matchCriteriaId": "5460DA6B-6F81-4B8C-9D8F-DB946E3F33EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:*:*:*:*:*:*:*",
"matchCriteriaId": "21DACE94-FBDC-4A3D-8DD6-E62D18F5EE7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta1:*:*:*:*:*:*",
"matchCriteriaId": "45E92521-FE62-4940-B194-A8482538401B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta2:*:*:*:*:*:*",
"matchCriteriaId": "6DF7D5B4-A8BD-4F3B-8DB3-D5AB94086A32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta2-1.2.21:*:*:*:*:*:*",
"matchCriteriaId": "B0A244FC-545E-4041-B922-B1B640E7E371",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta3:*:*:*:*:*:*",
"matchCriteriaId": "40F8973E-8150-4834-8D9B-370F3664E894",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta3-1.2.21:*:*:*:*:*:*",
"matchCriteriaId": "B9C93F2F-533D-4563-95F2-E94A2CCE9C39",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta4:*:*:*:*:*:*",
"matchCriteriaId": "73045C50-73FE-4162-8E8B-7721131E4396",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:beta4-1.2.21:*:*:*:*:*:*",
"matchCriteriaId": "C89DFAAD-279A-462D-BF72-D75CC24E72E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:rc1:*:*:*:*:*:*",
"matchCriteriaId": "1879D7C8-ABF1-4ECE-BBC7-71978695D4C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.22:rc1-1.2.21:*:*:*:*:*:*",
"matchCriteriaId": "1B27B3A2-04E1-4261-AA70-30EE2AA934F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:*:*:*:*:*:*:*",
"matchCriteriaId": "220A02AF-6ADA-4B75-BC81-40B2D847029A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta01:*:*:*:*:*:*",
"matchCriteriaId": "CA60D3F3-149B-4A76-9F35-4A0A127ADF65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta01-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "EAC54968-17ED-422E-9C78-65E4E167C76C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta02:*:*:*:*:*:*",
"matchCriteriaId": "3D625A71-5F2D-446A-BD69-1470B4127DAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta02-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "896E65A3-D814-4C58-8BD8-B10A2C812FC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta03:*:*:*:*:*:*",
"matchCriteriaId": "00C85EF8-8D8A-4ED8-B55B-2182421626CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta03-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "E07CE422-8047-4248-A36C-11E22A889D3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta04:*:*:*:*:*:*",
"matchCriteriaId": "6D65DCF8-D9A6-4A9E-8171-C52E12EB1476",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta04-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "65BEA559-944B-4E32-9F74-323CE7EA4FA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta05:*:*:*:*:*:*",
"matchCriteriaId": "C5114A9B-263F-4BBF-9A6A-F6E0900CDD78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:beta05-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "61EEC899-A9DC-44E4-8984-88DCBF733B6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:rc01:*:*:*:*:*:*",
"matchCriteriaId": "4CD12B3A-27B6-4BD4-90B5-874B677689FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.23:rc01-1.2.22:*:*:*:*:*:*",
"matchCriteriaId": "F22010B9-E18B-45DB-9316-8F56A535D1BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:*:*:*:*:*:*:*",
"matchCriteriaId": "ECEB8F61-195E-41DE-90CE-22854055E9D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta01:*:*:*:*:*:*",
"matchCriteriaId": "27988956-B3F4-428A-B369-C5E01A2F9102",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta01-1.2.23:*:*:*:*:*:*",
"matchCriteriaId": "84979A32-27E2-4A77-8245-47C6E61CE439",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta02:*:*:*:*:*:*",
"matchCriteriaId": "B4D45B16-C278-4ABF-8B91-CFA0AB384290",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta02-1.2.23:*:*:*:*:*:*",
"matchCriteriaId": "118582C6-A677-4FFB-9782-17BD35EE1973",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta03:*:*:*:*:*:*",
"matchCriteriaId": "247153A0-CF83-4D6E-A657-5D8D217D8EBA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:beta03-1.2.23:*:*:*:*:*:*",
"matchCriteriaId": "6F43AC37-27DE-4A6D-A8FE-138B4DA8E4BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:rc01:*:*:*:*:*:*",
"matchCriteriaId": "53D03C1D-684A-4BA5-841B-C414AD244DFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.24:rc01-1.2.23:*:*:*:*:*:*",
"matchCriteriaId": "D0DBDAB9-0F52-4A84-B262-F23E869D30CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:*:*:*:*:*:*:*",
"matchCriteriaId": "D0F72B91-1F7F-41EB-ABC8-1B50AFEC70EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta01:*:*:*:*:*:*",
"matchCriteriaId": "9F89EDB5-A195-479B-BEFB-E0A186A4A9D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta02:*:*:*:*:*:*",
"matchCriteriaId": "02BAC6A6-FBE9-48CD-9B4E-FC570684922B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta03:*:*:*:*:*:*",
"matchCriteriaId": "E695F515-AE7E-48AB-999C-75B62BEA0BE3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta04:*:*:*:*:*:*",
"matchCriteriaId": "D448D4A5-D827-4FF8-BAC1-E25FD8F01C41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta05:*:*:*:*:*:*",
"matchCriteriaId": "935F2297-6CB4-4ABB-9F4D-F11708CDC069",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:beta06:*:*:*:*:*:*",
"matchCriteriaId": "25ED23F7-DF30-46B2-99EF-3924E22C1870",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:rc01:*:*:*:*:*:*",
"matchCriteriaId": "6FB56358-46E4-4999-A311-5E1819A6D5DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.25:rc02:*:*:*:*:*:*",
"matchCriteriaId": "F508CFA5-5602-445C-9E18-71B6A625F9E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:*:*:*:*:*:*:*",
"matchCriteriaId": "111091B9-CBAE-4FC7-8B97-7D2345BFCB45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:beta01:*:*:*:*:*:*",
"matchCriteriaId": "897D42F6-202B-425A-BF0D-76D1A74D8E67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:beta02:*:*:*:*:*:*",
"matchCriteriaId": "50300181-3691-4EA2-B779-1C9CF59E08FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:beta03:*:*:*:*:*:*",
"matchCriteriaId": "CABA31D9-9EC0-4447-9C5E-8BC5DF5F431D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:beta04:*:*:*:*:*:*",
"matchCriteriaId": "D4568552-91F6-4E05-ADA5-4127CBD4D3EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:beta05:*:*:*:*:*:*",
"matchCriteriaId": "D72D51C0-1044-4A74-823F-7123340FB9BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.26:rc01:*:*:*:*:*:*",
"matchCriteriaId": "947395DE-A911-47B3-983D-B5D23672068D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.30:*:*:*:*:*:*:*",
"matchCriteriaId": "1CAA1090-C1C7-43A2-BD44-065572D226B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.31:*:*:*:*:*:*:*",
"matchCriteriaId": "2FD92305-91BF-4984-A029-8FA83CBF1A12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.33:*:*:*:*:*:*:*",
"matchCriteriaId": "31EE280F-D76D-478B-ADD6-D5F2C7574A2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:libpng:libpng:1.2.34:*:*:*:*:*:*:*",
"matchCriteriaId": "747314F7-A515-41FF-8095-62A9F05F0DEA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via \"out-of-bounds pixels\" in the file."
},
{
"lang": "es",
"value": "libpng anteriores a v1.2.37 no parsea adecuadamente 1-bit de im\u00e1genes entrelazadas con valores de ancho que no son divisibles por 8, lo que produce que libpng incluya bits sin inicializar en ciertas filas del fichero PNG lo que permitir\u00eda atacantes remotos leer trozos de memoria sensible a trav\u00e9s de \"pixeles fuera de rango\" en el fichero."
}
],
"id": "CVE-2009-2042",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2009-06-12T20:30:00.203",
"references": [
{
"source": "cve@mitre.org",
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"source": "cve@mitre.org",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"source": "cve@mitre.org",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/35346"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/35470"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/35524"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/35594"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/39206"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/39215"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/39251"
},
{
"source": "cve@mitre.org",
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"source": "cve@mitre.org",
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"source": "cve@mitre.org",
"url": "http://support.apple.com/kb/HT4077"
},
{
"source": "cve@mitre.org",
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/35233"
},
{
"source": "cve@mitre.org",
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"source": "cve@mitre.org",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"source": "cve@mitre.org",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.vmware.com/pipermail/security-announce/2010/000090.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/35346"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/35470"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/35524"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/35594"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/39206"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/39215"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/39251"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-200906-01.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.551809"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://support.apple.com/kb/HT4077"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://ubuntu.com/usn/usn-913-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2010/dsa-2032"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.libpng.org/pub/png/libpng.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:063"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/35233"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vmware.com/security/advisories/VMSA-2010-0007.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2009/1510"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2010/0637"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2010/0682"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2010/0847"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50966"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vendorComments": [
{
"comment": "This issue has been addressed in Red Hat Enterprise Linux 3, 4, and 5 via https://rhn.redhat.com/errata/RHSA-2010-0534.html.",
"lastModified": "2010-07-14T00:00:00",
"organization": "Red Hat"
}
],
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-200"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…