PT-2012-6357 · Google+4 · Google Chrome+4

Jüri Aedla

·

Publicado

1970-01-01

·

Atualizado

2025-09-29

·

CVE-2011-3026

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions libpng versions prior to 1.5.10 Google Chrome versions prior to 17.0.963.56
Description The issue is related to an integer overflow in libpng, which can be exploited remotely to cause a denial of service or possibly have other unspecified impacts. This can lead to a violation of confidentiality, integrity, and availability of protected information. The exploitation can be carried out remotely.
Recommendations For libpng versions prior to 1.5.10, update to version 1.5.10 or later to resolve the issue. For Google Chrome versions prior to 17.0.963.56, update to version 17.0.963.56 or later to resolve the issue.

Exploit

Correção

DoS

Memory Leak

Integer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-401CWE-190

Identificadores relacionados

ALSA-2025_16880
BDU:2015-04578
BDU:2015-04579
BDU:2015-04580
BDU:2015-04581
BDU:2015-04582
BDU:2015-04583
BDU:2015-04584
BDU:2015-04585
BDU:2015-04586
BDU:2015-04587
BDU:2015-09650
CESA-2012_0140
CESA-2012_0143
CESA-2012_0317
CVE-2011-3026
DSA-2410-1
ELSA-2012-0140
ELSA-2012-0143
ELSA-2012-0317
OPENSUSE-SU-2012_0297-1
OPENSUSE-SU-2012_0316-1
OPENSUSE-SU-2014_1100-1
OPENSUSE-SU-2024:10071-1
OPENSUSE-SU-2024:10171-1
OPENSUSE-SU-2024:10230-1
OPENSUSE-SU-2024:12948-1
OPENSUSE-SU-2024:14572-1
RHSA-2012:0140
RHSA-2012:0141
RHSA-2012:0142
RHSA-2012:0143
RHSA-2012:0317
RHSA-2012_0140
RHSA-2012_0141
RHSA-2012_0142
RHSA-2012_0143
RHSA-2012_0317
SUSE-SU-2012_0298-1
SUSE-SU-2012_0303-1
SUSE-SU-2012_0318-1

Produtos afetados

Centos
Google Chrome
Red Hat
Suse
Libpng