Added |
CVSS V2 |
|
NIST (AV:N/AC:M/Au:N/C:N/I:N/A:P)
|
Removed |
CVSS V2 |
NIST (AV:N/AC:L/Au:N/C:N/I:N/A:C)
|
|
Added |
CWE |
|
NIST CWE-400
|
Removed |
CWE |
NIST CWE-399
|
|
Changed |
CPE Configuration |
Record truncated, showing 500 of 24409 characters.
View Entire Change Record
OR
*cpe:2.3:a:libpng:libpng:1.0.0:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.1:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.2:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.3:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.5:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.6:*:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.6:a:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.6:d:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.6:e:*:*:*:*:*:*
*cpe:2.3:a:libpng:libpng:1.0.6:f:*:*:*:*:*
|
OR
*cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.0.0 up to (excluding) 1.0.53
*cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.2.0 up to (excluding) 1.2.43
*cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.4.0 up to (excluding) 1.4.1
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (excluding) 10.6.5
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
*cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
*cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
*cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
*cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
*cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:*
*cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
*cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
*cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
*cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
*cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
*cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
*cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
*cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*
|
Changed |
Reference Type |
http://libpng.sourceforge.net/ADVISORY-1.4.1.html Vendor Advisory
|
http://libpng.sourceforge.net/ADVISORY-1.4.1.html Third Party Advisory
|
Changed |
Reference Type |
http://libpng.sourceforge.net/decompression_bombs.html No Types Assigned
|
http://libpng.sourceforge.net/decompression_bombs.html Third Party Advisory
|
Changed |
Reference Type |
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html No Types Assigned
|
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037237.html No Types Assigned
|
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037237.html Third Party Advisory
|
Changed |
Reference Type |
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037355.html No Types Assigned
|
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037355.html Third Party Advisory
|
Changed |
Reference Type |
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037364.html No Types Assigned
|
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037364.html Third Party Advisory
|
Changed |
Reference Type |
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037607.html No Types Assigned
|
http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037607.html Third Party Advisory
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html No Types Assigned
|
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html No Types Assigned
|
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html No Types Assigned
|
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Mailing List
|
Changed |
Reference Type |
http://lists.vmware.com/pipermail/security-announce/2010/000105.html No Types Assigned
|
http://lists.vmware.com/pipermail/security-announce/2010/000105.html Third Party Advisory
|
Changed |
Reference Type |
http://osvdb.org/62670 No Types Assigned
|
http://osvdb.org/62670 Broken Link
|
Changed |
Reference Type |
http://secunia.com/advisories/38774 No Types Assigned
|
http://secunia.com/advisories/38774 Third Party Advisory
|
Changed |
Reference Type |
http://secunia.com/advisories/39251 No Types Assigned
|
http://secunia.com/advisories/39251 Third Party Advisory
|
Changed |
Reference Type |
http://secunia.com/advisories/41574 No Types Assigned
|
http://secunia.com/advisories/41574 Third Party Advisory
|
Changed |
Reference Type |
http://support.apple.com/kb/HT4435 No Types Assigned
|
http://support.apple.com/kb/HT4435 Broken Link
|
Changed |
Reference Type |
http://ubuntu.com/usn/usn-913-1 No Types Assigned
|
http://ubuntu.com/usn/usn-913-1 Third Party Advisory
|
Changed |
Reference Type |
http://www.debian.org/security/2010/dsa-2032 No Types Assigned
|
http://www.debian.org/security/2010/dsa-2032 Third Party Advisory
|
Changed |
Reference Type |
http://www.kb.cert.org/vuls/id/576029 US Government Resource
|
http://www.kb.cert.org/vuls/id/576029 Third Party Advisory, US Government Resource
|
Changed |
Reference Type |
http://www.mandriva.com/security/advisories?name=MDVSA-2010:063 No Types Assigned
|
http://www.mandriva.com/security/advisories?name=MDVSA-2010:063 Third Party Advisory
|
Changed |
Reference Type |
http://www.mandriva.com/security/advisories?name=MDVSA-2010:064 No Types Assigned
|
http://www.mandriva.com/security/advisories?name=MDVSA-2010:064 Third Party Advisory
|
Changed |
Reference Type |
http://www.securityfocus.com/bid/38478 Patch
|
http://www.securityfocus.com/bid/38478 Patch, Third Party Advisory, VDB Entry
|
Changed |
Reference Type |
http://www.securitytracker.com/id?1023674 No Types Assigned
|
http://www.securitytracker.com/id?1023674 Third Party Advisory, VDB Entry
|
Changed |
Reference Type |
http://www.vmware.com/security/advisories/VMSA-2010-0014.html No Types Assigned
|
http://www.vmware.com/security/advisories/VMSA-2010-0014.html Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0517 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0517 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0605 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0605 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0626 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0626 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0637 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0637 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0667 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0667 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0682 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0682 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0686 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0686 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/0847 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/0847 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/1107 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/1107 Third Party Advisory
|
Changed |
Reference Type |
http://www.vupen.com/english/advisories/2010/2491 No Types Assigned
|
http://www.vupen.com/english/advisories/2010/2491 Third Party Advisory
|
Changed |
Reference Type |
https://exchange.xforce.ibmcloud.com/vulnerabilities/56661 No Types Assigned
|
https://exchange.xforce.ibmcloud.com/vulnerabilities/56661 Third Party Advisory, VDB Entry
|
Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|