Pngcrush Project Pngcrush vulnerabilities
2 known vulnerabilities affecting pngcrush_project/pngcrush.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2015-2158HIGHCVSS 7.8≤ 1.7.832017-10-06
CVE-2015-2158 [HIGH] CWE-189 CVE-2015-2158: Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allow
Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file.
nvd
CVE-2015-7700CRITICALCVSS 9.8≤ 1.7.862017-08-31
CVE-2015-7700 [CRITICAL] CWE-415 CVE-2015-7700: Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows att
Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.
nvdosv