This page displays vulnerability information about FreeBSD Ports.
The last vuln.xml file processed by FreshPorts is:
Revision: 454327 Date: 2017-11-16 Time: 19:05:01Z Committer: jkim
List all Vulnerabilities, by package
List all Vulnerabilities, by date
These are the vulnerabilities relating to the commit you have selected:
|1886e195-8b87-11e5-90e7-b499baebfeaf||libpng buffer overflow in png_set_PLTE|
|c564f9bd-8ba7-11e4-801f-0022156e8794||png -- heap overflow for 32-bit builds|
32-bit builds of PNG library are vulnerable to an unsigned integer overflow that is triggered by a crafted wide interlaced images. Overflow results in a heap corruption that will crash the application and may lead to the controlled overwrite of a selected portions of process address space.
ge 1.2.6 lt 1.5.21
ge 1.6 lt 1.6.16