CVE-2011-3026

CVE Database · CVE-2011-3026

CVE-2011-3026

· N/AModified

CVSS v3.1

N/A

EPSS

73.41%

Published

Feb 16, 2012

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation.

Weaknesses (CWE)

CWE-190

Affected Products (11)

google · chrome (up to 17.0.963.56)vulnerable

apple · iphone_os (up to 6.0)vulnerable

apple · mac_os_x (up to 10.7.5)vulnerable

apple · mac_os_xvulnerable

apple · mac_os_x_server (up to 10.7.5)vulnerable

apple · mac_os_x_servervulnerable

opensuse · opensusevulnerable

suse · linux_enterprise_servervulnerable

suse · suse_linux_enterprise_servervulnerable

References (20)

http://code.google.com/p/chromium/issues/detail?id=112822

ExploitVendor Advisory

http://googlechromereleases.blogspot.com/2012/02/chrome-stable-update.html

Release NotesVendor Advisory

http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html

Mailing ListThird Party Advisory

http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00020.html

Mailing ListThird Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs