CVE-2011-3045

CWE-190 — Integer Overflow CWE-1959 documents6 sources

Severity

8.8HIGH

EPSS

4.5%

top 10.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Chrome Libpng Libpng Debian Debian Linux +10 more

Timeline

PublishedMar 22

Latest updateMay 13

Description

Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages7 packages

▶NVDgoogle/chrome< 17.0.963.83

▶NVDlibpng/libpng< 1.5.10

▶NVDredhat/storage2.0

▶NVDopensuse/opensuse12.1

▶NVDredhat/gluster_storage2.0

Also affects: Debian Linux 6.0, Fedora 15, 16, 17, Enterprise Linux 5.0, 6.0, 6.2

Patches

Patch: src.chromium.org ↗Patch: bugzilla.redhat.com ↗Patch: src.chromium.org ↗

🔴Vulnerability Details

GHSA

GHSA-w4pv-vqp3-f753: Integer signedness error in the png_inflate function in pngrutil↗2022-05-13

▶

CVEList

CVE-2011-3045: Integer signedness error in the png_inflate function in pngrutil↗2012-03-22

▶

📋Vendor Advisories

Ubuntu

libpng vulnerability↗2012-03-22

▶

Red Hat

libpng: buffer overflow in png_inflate caused by invalid type conversions↗2012-03-08

▶

💬Community

Bugzilla

CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions [epel-6]↗2012-03-09

▶

Bugzilla

CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions [fedora-all]↗2012-03-09

▶

Bugzilla

CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions [fedora-all]↗2012-03-09

▶

Bugzilla

CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions↗2012-03-01

▶