VDB

GCVE-110-MAGEIA-2015-451

GCVE-110-MAGEIA-2015-451
Advisory Published
Vulnetix · Advisory published November 19, 2015
Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions in libpng before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image (CVE-2015-8126). This issue also affected libpng 1.2 before 1.2.54. The libpng and libpng12 packages have been updated to versions 1.6.19 and 1.2.54, respectively, fixing this issue.

Affected Products

VendorProductVersionsPlatforms
Mageialibpng0 (affected), 1.6.19-1.mga5 (unaffected)
Mageialibpng121.2.54-1.mga5 (unaffected), 0 (affected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›