Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HDebian
OSDebian6.0Fedora Project Fedora
OSFedoraproject151617Google Chrome
APPGoogle< 17.0.963.83Libpng
APPLibpng< 1.5.10Opensuse
OSOpensuse12.1Red Hat Enterprise Linux
OSRedhat5.06.0Red Hat Enterprise Linux Desktop
OSRedhat5.06.0Red Hat Enterprise Linux Server Aus
OSRedhat6.2Red Hat Enterprise Linux Server Eus
OSRedhat6.2Red Hat Enterprise Linux Workstation
OSRedhat5.06.0Red Hat Gluster Storage
APPRedhat2.0Red Hat Storage
APPRedhat2.0Red Hat Storage For Public Cloud
APPRedhat2.0
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCEDoS
References
Related vulnerabilities
CVE-2026-24061CRITICAL9.8⚠ KEVPL ✓ten sam produkt
GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER
CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
CVE-2025-49113CRITICAL9.9⚠ KEVPL ✓ten sam produkt
RCE przez deserializację PHP w Roundcube Webmail (parametr _from)
CVE-2025-32433CRITICAL10.0⚠ KEVPL ✓ten sam produkt
Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)