[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

[3.7] libpng: use-after-free in png_image_free in png.c (CVE-2019-7317)

ID: oval:org.secpod.oval:def:1801420Date: (C)2019-05-13   (M)2024-01-29
Class: PATCHFamily: unix




A vulnerability was found in libpng 1.6.36. The function png_image_free in png.c has a use-after-free because png_image_free_function is called under png_safe_execute. This flaw is in the PNG Simplified API, which was introduced upstream in libpng-1.6.0. Previous versions of libpng are not affected.

Platform:
Alpine Linux 3.7
Product:
libpng
Reference:
10364
CVE-2019-7317
CVE-2018-14048
CVE-2018-14550
CVE    3
CVE-2018-14550
CVE-2018-14048
CVE-2019-7317
CPE    2
cpe:/o:alpinelinux:alpine_linux:3.7
cpe:/a:libpng:libpng

© SecPod Technologies