NVD

Id
29232  
Name
CVE-2014-0333  
Description
The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2014-02-27  
Modified Date
2014-03-26  
Seq
2014-0333  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
154891 29232 CVE-2014-0333 ftp://ftp.simplesystems.org/pub/png/src/libpng16/patch-libpng16-vu684412.diff  View
154892 29232 CVE-2014-0333 openSUSE-SU-2014:0358  View
154893 29232 CVE-2014-0333 VU#684412  View
154894 29232 CVE-2014-0333 https://sourceforge.net/projects/libpng/files/libpng16/patch-libpng16-vu684412.diff  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
12585 JVNDB-2014-001460 libpng におけるサービス運用妨害 (DoS) の脆弱性 libpng には、サービス運用妨害 (DoS) の脆弱性が存在します。 CVE-2014-0333 67734 CVE-2014-0333 29232 5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001460.html 2014-02-25 2014-03-04 View