VDB
GCVE-110-MAGEIA-2014-210
GCVE-110-MAGEIA-2014-210
Advisory Published
Updated libpng12 and libpng packages fix security vulnerabilities:
An integer overflow leading to a heap-based buffer overflow was found in
the png_set_sPLT() and png_set_text_2() API functions of libpng. An
attacker could create a specially-crafted image file and render it with
an application written to explicitly call png_set_sPLT() or
png_set_text_2() function, could cause libpng to crash or execute
arbitrary code with the permissions of the user running such an
application (CVE-2013-7353).
An integer overflow leading to a heap-based buffer overflow was found in
the png_set_unknown_chunks() API function of libpng. An attacker could
create a specially-crafted image file and render it with an application
written to explicitly call png_set_unknown_chunks() function, could cause
libpng to crash or execute arbitrary code with the permissions of the user
running such an application (CVE-2013-7354).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | evolution-data-server | 0 (affected), 3.10.2-1.2.mga4 (unaffected) | — |
| Mageia | libpng12 | 0 (affected), 1.2.50-3.2.mga3 (unaffected), 0 (affected), 1.2.50-3.2.mga3 (unaffected) | — |
| Mageia | libpng | 0 (affected), 1.5.13-2.2.mga3 (unaffected), 0 (affected), 1.5.13-2.2.mga3 (unaffected) | — |
Aliases
References
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.