CVE-2016-2191 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Optipng
Severity
6.5MEDIUMNVD
EPSS
2.1%
top 16.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 13
Latest updateMay 14
Description
The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (invalid memory write and crash) via a series of delta escapes in a crafted BMP image.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6
Affected Packages4 packages
Also affects: Debian Linux 7.0, 8.0, Ubuntu Linux 12.04, 14.04, 15.04
Patches
🔴Vulnerability Details
4📋Vendor Advisories
3💬Community
4Bugzilla▶
CVE-2016-2191 CVE-2016-3981 CVE-2016-3982 optipng: various flaws fixed in 0.7.6 [fedora-all]↗2016-04-05
Bugzilla▶
CVE-2016-2191 CVE-2016-3981 CVE-2016-3982 optipng: various flaws fixed in 0.7.6 [epel-all]↗2016-04-05
Bugzilla▶
CVE-2016-2191 optipng: Invalid write while processing delta escapes without any boundary checking↗2016-02-15