← Back

Pngcrush

pngcrush

Vendor: Pngcrush Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2015-2158
1Pngcrush Project
1Pngcrush
May 13, 2026
Oct 6, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG...Show more
Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file.Show less
CVE-2015-7700
1Pngcrush Project
1Pngcrush
May 13, 2026
Aug 31, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.