Information on source package libpng1.6

Available versions

ReleaseVersion
buster1.6.36-6
bullseye1.6.37-3
bookworm1.6.39-2
trixie1.6.40-2
sid1.6.40-2

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2021-4214vulnerablevulnerablevulnerablevulnerablevulnerableA heap overflow flaw was found in libpngs' pngimage.c program. This fl ...
CVE-2019-6129vulnerablevulnerablefixedfixedfixedpng_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as ...
CVE-2018-14550vulnerablefixedfixedfixedfixedAn issue has been found in third-party PNM decoding associated with li ...
CVE-2018-14048vulnerablefixedfixedfixedfixedAn issue has been found in libpng 1.6.34. It is a SEGV in the function ...

Resolved issues

BugDescription
CVE-2019-7317png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after- ...
CVE-2018-13785In libpng 1.6.34, a wrong calculation of row_factor in the png_check_c ...
CVE-2017-12652libpng before 1.6.32 does not properly check the length of chunks agai ...
CVE-2016-10087The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before ...
CVE-2015-8472Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, ...
CVE-2015-0973Buffer overflow in the png_read_IDAT_data function in pngrutil.c in li ...
CVE-2014-9495Heap-based buffer overflow in the png_combine_row function in libpng b ...
CVE-2014-0333The png_push_read_chunk function in pngpread.c in the progressive deco ...
CVE-2013-7354Multiple integer overflows in libpng before 1.5.14rc03 allow remote at ...
CVE-2013-7353Integer overflow in the png_set_unknown_chunks function in libpng/pngs ...

Security announcements

DSA / DLADescription
DSA-4435-1libpng1.6 - security update
Search for package or bug name: Reporting problems