CVE

Id
67300  
CVE No.
CVE-2013-7353  
Status
Candidate  
Description
Integer overflow in the png_set_unknown_chunks function in libpng/pngset.c in libpng before 1.5.14beta08 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a crafted image, which triggers a heap-based buffer overflow.  
Phase
Assigned (20140410)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
649373 67300 CVE-2013-7353 MLIST:[oss-security] 20140410 CVE-2013-7353 CVE-2013-7354 libpng integer overflows  View
649374 67300 CVE-2013-7353 URL:http://seclists.org/oss-sec/2014/q2/83  View
649375 67300 CVE-2013-7353 CONFIRM:http://sourceforge.net/p/libpng/bugs/199/  View
649376 67300 CVE-2013-7353 SUSE:openSUSE-SU-2014:0604  View
649377 67300 CVE-2013-7353 URL:http://lists.opensuse.org/opensuse-updates/2014-05/msg00015.html  View
649378 67300 CVE-2013-7353 BID:67345  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24729 JVNDB-2013-006304 SAP Guided Procedures Archive Monitor におけるユーザ名などの情報を取得される脆弱性 SAP Guided Procedures Archive Monitor には、ユーザ名、ロール、プロフィールおよびその他の識別情報を取得される脆弱性が存在します。 CVE-2013-7358 67300 5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-006304.html  View