CVE-2015-8126 Detail Current Description Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.

View Analysis Description Analysis Description Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. Severity CVSS Version 3.x CVSS Version 2.0



CVSS 3.x Severity and Metrics:

NIST: NVD Base Score: N/A NVD score not yet provided. CVSS 2.0 Severity and Metrics:



NIST: NVD Base Score: 7.5 HIGH Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P) Weakness Enumeration CWE-ID CWE Name Source CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') NIST Known Affected Software Configurations Switch to CPE 2.2 CPEs loading, please wait. Denotes Vulnerable Software

Are we missing a CPE here? Please let us know.

Change History 18 change records found show changes CPE Deprecation Remap 9/08/2020 8:30:36 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:oracle:jdk:1.8.0:update_66:*:*:*:*:*:*



OR *cpe:2.3:a:oracle:jdk:1.8.0:update66:*:*:*:*:*:*



CPE Deprecation Remap 9/08/2020 8:30:32 AM Action Type Old Value New Value Changed CPE Configuration OR *cpe:2.3:a:oracle:jdk:1.8.0:update_65:*:*:*:*:*:*



OR *cpe:2.3:a:oracle:jdk:1.8.0:update65:*:*:*:*:*:*



Modified Analysis 8/31/2020 11:6:28 AM Action Type Old Value New Value Added CPE Configuration AND OR *cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:* OR cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*



Added CPE Configuration Record truncated, showing 500 of 584 characters.

View Entire Change Record

OR *cpe:2.3:a:oracle:jdk:1.6.0:update_105:*:*:*:*:*:* *cpe:2.3:a:oracle:jdk:1.7.0:update_91:*:*:*:*:*:* *cpe:2.3:a:oracle:jdk:1.8.0:update_65:*:*:*:*:*:* *cpe:2.3:a:oracle:jdk:1.8.0:update_66:*:*:*:*:*:* *cpe:2.3:a:oracle:jre:1.6.0:update_105:*:*:*:*:*:* *cpe:2.3:a:oracle:jre:1.7.0:update_91:*:*:*:*:*:* *cpe:2.3:a:oracle:jre:1.8.0:update_65:*:*:*:*:*:* *cpe:2.3:a:oracle:jre:1.8.0:update_66:*:*:*:*:*:* *cpe:2.3:o:oracle:linux:6:-:*:*:*:*:*:* *cpe: Added CPE Configuration Record truncated, showing 500 of 1510 characters.

View Entire Change Record

OR *cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_eus:6.7:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_eus:7.2:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:* *cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:* Added CPE Configuration OR *cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (excluding) 10.11.4



Added CPE Configuration OR *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:* *cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*



Added CPE Configuration OR *cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:* *cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*



Added CPE Configuration Record truncated, showing 500 of 541 characters.

View Entire Change Record

OR *cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:* *cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:* *cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:* *cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:* *cpe:2.3:o:suse:linux_enterprise_desktop:11:sp4:*:*:*:*:*:* *cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:* *cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:* *cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:* *cpe:2.3:o:suse:l Changed CPE Configuration OR *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions up to (including) 1.6.18



OR *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions up to (excluding) 1.0.64 *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.1.1 up to (excluding) 1.2.54 *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.3.0 up to (excluding) 1.4.17 *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.5.0 up to (excluding) 1.5.24 *cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions from (including) 1.6.0 up to (excluding) 1.6.19



Removed CPE Configuration OR *cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to (including) 10.11.3



Added CWE NIST CWE-120



Removed CWE NIST CWE-119



Changed Reference Type http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html No Types Assigned



http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html Third Party Advisory



Changed Reference Type http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html No Types Assigned



http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172324.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172324.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172620.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172620.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172647.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172647.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172663.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172663.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172769.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172769.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172797.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172797.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172823.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172823.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177344.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177344.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177382.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177382.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174905.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174905.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174936.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174936.html Third Party Advisory



Changed Reference Type http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175073.html No Types Assigned



http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175073.html Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00033.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00033.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00034.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00034.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00041.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00041.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00014.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00014.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00015.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00015.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00018.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00018.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00028.html No Types Assigned



http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00028.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2015-11/msg00159.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2015-11/msg00159.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2015-11/msg00160.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2015-11/msg00160.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2015-12/msg00062.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2015-12/msg00062.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2015-12/msg00063.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2015-12/msg00063.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2016-01/msg00028.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2016-01/msg00028.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2016-01/msg00029.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2016-01/msg00029.html Mailing List, Third Party Advisory



Changed Reference Type http://lists.opensuse.org/opensuse-updates/2016-01/msg00030.html No Types Assigned



http://lists.opensuse.org/opensuse-updates/2016-01/msg00030.html Mailing List, Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2015-2594.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2015-2594.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2015-2595.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2015-2595.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2015-2596.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2015-2596.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2016-0055.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2016-0055.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2016-0056.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2016-0056.html Third Party Advisory



Changed Reference Type http://rhn.redhat.com/errata/RHSA-2016-0057.html No Types Assigned



http://rhn.redhat.com/errata/RHSA-2016-0057.html Third Party Advisory



Changed Reference Type http://www.debian.org/security/2015/dsa-3399 No Types Assigned



http://www.debian.org/security/2015/dsa-3399 Third Party Advisory



Changed Reference Type http://www.debian.org/security/2016/dsa-3507 No Types Assigned



http://www.debian.org/security/2016/dsa-3507 Third Party Advisory



Changed Reference Type http://www.openwall.com/lists/oss-security/2015/11/12/2 No Types Assigned



http://www.openwall.com/lists/oss-security/2015/11/12/2 Mailing List, Third Party Advisory



Changed Reference Type http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html No Types Assigned



http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html Third Party Advisory



Changed Reference Type http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html No Types Assigned



http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Third Party Advisory



Changed Reference Type http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html No Types Assigned



http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html Third Party Advisory



Changed Reference Type http://www.securityfocus.com/bid/77568 No Types Assigned



http://www.securityfocus.com/bid/77568 Third Party Advisory, VDB Entry



Changed Reference Type http://www.securitytracker.com/id/1034142 No Types Assigned



http://www.securitytracker.com/id/1034142 Third Party Advisory, VDB Entry



Changed Reference Type http://www.ubuntu.com/usn/USN-2815-1 No Types Assigned



http://www.ubuntu.com/usn/USN-2815-1 Third Party Advisory



Changed Reference Type https://access.redhat.com/errata/RHSA-2016:1430 No Types Assigned



https://access.redhat.com/errata/RHSA-2016:1430 Third Party Advisory



Changed Reference Type https://code.google.com/p/chromium/issues/detail?id=560291 No Types Assigned



https://code.google.com/p/chromium/issues/detail?id=560291 Issue Tracking, Patch, Third Party Advisory



Changed Reference Type https://kc.mcafee.com/corporate/index?page=content&id=SB10148 No Types Assigned



https://kc.mcafee.com/corporate/index?page=content&id=SB10148 Third Party Advisory



Changed Reference Type https://security.gentoo.org/glsa/201603-09 No Types Assigned



https://security.gentoo.org/glsa/201603-09 Third Party Advisory



Changed Reference Type https://security.gentoo.org/glsa/201611-08 No Types Assigned



https://security.gentoo.org/glsa/201611-08 Third Party Advisory



Changed Reference Type https://support.apple.com/HT206167 Vendor Advisory



https://support.apple.com/HT206167 Third Party Advisory



CVE Modified by MITRE 6/30/2017 9:29:24 PM Action Type Old Value New Value Added Reference https://security.gentoo.org/glsa/201611-08 [No Types Assigned]



CVE Modified by MITRE 12/07/2016 1:26:42 PM Action Type Old Value New Value Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172324.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172620.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172647.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172663.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172769.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172797.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172823.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00033.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00034.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00038.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00041.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00042.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00043.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00044.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00047.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00048.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2015-11/msg00159.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2015-11/msg00160.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2015-12/msg00062.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2015-12/msg00063.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2016-01/msg00028.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2016-01/msg00029.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-updates/2016-01/msg00030.html [No Types Assigned]



Added Reference http://www.securitytracker.com/id/1034142 [No Types Assigned]



CVE Modified by MITRE 12/05/2016 10:3:45 PM Action Type Old Value New Value Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177344.html [No Types Assigned]



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177382.html [No Types Assigned]



Added Reference http://rhn.redhat.com/errata/RHSA-2016-0055.html [No Types Assigned]



Added Reference http://rhn.redhat.com/errata/RHSA-2016-0056.html [No Types Assigned]



Added Reference http://rhn.redhat.com/errata/RHSA-2016-0057.html [No Types Assigned]



Added Reference https://kc.mcafee.com/corporate/index?page=content&id=SB10148 [No Types Assigned]



CVE Modified by MITRE 12/02/2016 10:13:24 PM Action Type Old Value New Value Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00014.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00015.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00018.html [No Types Assigned]



Added Reference http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00028.html [No Types Assigned]



Added Reference http://www.debian.org/security/2016/dsa-3507 [No Types Assigned]



Added Reference https://security.gentoo.org/glsa/201603-09 [No Types Assigned]



CVE Modified by MITRE 11/28/2016 2:46:07 PM Action Type Old Value New Value Added Reference http://www.securityfocus.com/bid/77568 [No Types Assigned]



Added Reference https://access.redhat.com/errata/RHSA-2016:1430 [No Types Assigned]



CVE Modified by Source 10/14/2016 10:4:05 PM Action Type Old Value New Value Added Reference http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html



CVE Modified by Source 9/22/2016 9:59:16 PM Action Type Old Value New Value Added Reference http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html



CVE Modified by Source 6/02/2016 10:0:05 PM Action Type Old Value New Value Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174905.html



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2016-January/174936.html



Added Reference http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175073.html



Added Reference http://rhn.redhat.com/errata/RHSA-2015-2594.html



Added Reference http://rhn.redhat.com/errata/RHSA-2015-2595.html



Added Reference http://rhn.redhat.com/errata/RHSA-2015-2596.html



Modified Analysis 3/29/2016 7:10:07 PM Action Type Old Value New Value Changed CPE Configuration Configuration 1 OR *cpe:2.3:a:libpng:libpng:1.6.18:*:*:*:*:*:*:* (and previous)



Configuration 1 OR *cpe:2.3:o:apple:mac_os_x:10.11.3:*:*:*:*:*:*:* (and previous) Configuration 2 OR *cpe:2.3:a:libpng:libpng:1.6.18:*:*:*:*:*:*:* (and previous)



Changed Reference Type https://support.apple.com/HT206167 No Types Assigned



https://support.apple.com/HT206167 Advisory



CVE Modified by Source 3/24/2016 9:59:14 PM Action Type Old Value New Value Added Reference http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html



Added Reference https://support.apple.com/HT206167



CVE Modified by Source 3/07/2016 9:59:01 PM Action Type Old Value New Value Added Reference http://googlechromereleases.blogspot.com/2016/03/stable-channel-update.html



Added Reference https://code.google.com/p/chromium/issues/detail?id=560291



CVE Modified by Source 1/21/2016 9:59:58 PM Action Type Old Value New Value Added Reference http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html



CVE Modified by Source 11/25/2015 9:59:04 PM Action Type Old Value New Value Added Reference http://www.debian.org/security/2015/dsa-3399



Added Reference http://www.ubuntu.com/usn/USN-2815-1



Modified Analysis 11/13/2015 12:11:46 PM Action Type Old Value New Value Added CPE Configuration Configuration 1 OR *cpe:2.3:a:libpng:libpng:1.6.18:*:*:*:*:*:*:* (and previous)



Added CVSS V2 (AV:N/AC:L/Au:N/C:P/I:P/A:P)



Added CWE CWE-119



Initial CVE Analysis 11/13/2015 10:9:30 AM Action Type Old Value New Value Quick Info CVE Dictionary Entry:

CVE-2015-8126

NVD Published Date:

11/12/2015

NVD Last Modified:

08/31/2020

Source:

MITRE

