Denial of Service (DoS) Affecting libpng package, versions [0,]


Severity

Recommended
0.0
high
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
2.98% (86th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-CONAN-LIBPNG-10077239
  • published8 May 2025
  • disclosed12 Aug 2002
  • creditUnknown

Introduced: 12 Aug 2002

CVE-2002-0660  (opens in a new tab)
CWE-400  (opens in a new tab)

How to fix?

There is no fixed version for libpng.

Overview

Affected versions of this package are vulnerable to Denial of Service (DoS). Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-2002-0728.

CVSS Base Scores

version 3.1