VDB

GCVE-110-MAGEIA-2014-211

GCVE-110-MAGEIA-2014-211
Advisory Published
Vulnetix · Advisory published May 10, 2014
Updated libpng12 packages fix security vulnerabilities: An integer overflow leading to a heap-based buffer overflow was found in the png_set_sPLT() and png_set_text_2() API functions of libpng. An attacker could create a specially-crafted image file and render it with an application written to explicitly call png_set_sPLT() or png_set_text_2() function, could cause libpng to crash or execute arbitrary code with the permissions of the user running such an application (CVE-2013-7353). An integer overflow leading to a heap-based buffer overflow was found in the png_set_unknown_chunks() API function of libpng. An attacker could create a specially-crafted image file and render it with an application written to explicitly call png_set_unknown_chunks() function, could cause libpng to crash or execute arbitrary code with the permissions of the user running such an application (CVE-2013-7354).

Affected Products

VendorProductVersionsPlatforms
Mageialibpng121.2.50-4.2.mga4 (unaffected), 0 (affected), 0 (affected), 1.2.50-4.2.mga4 (unaffected)
Mageiax11-driver-video-geode0 (affected), 2.11.15-1.1.mga4 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›