Aggregates CVE and security vulnerability intelligence across all pngdec_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact memory corruption and vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-35013 | PNGDec commit 8abf6be was discovered to contain a FPE via SaveBMP at /linux/main.cpp. | [email protected] | 6.5 | 0.71% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35012 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via SaveBMP at /linux/main.cpp. | [email protected] | 6.5 | 0.69% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35011 | PNGDec commit 8abf6be was discovered to contain a global buffer overflow via inflate_fast at /src/inffast.c. | [email protected] | 8.8 | 0.86% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35010 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via asan_interceptors_memintrinsics.cpp. | [email protected] | 6.5 | 0.69% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35009 | PNGDec commit 8abf6be was discovered to contain a memory allocation problem via asan_malloc_linux.cpp. | [email protected] | 6.5 | 0.72% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35008 | PNGDec commit 8abf6be was discovered to contain a stack overflow via /linux/main.cpp. | [email protected] | 6.5 | 0.69% | 2022-08-16 | 2026-06-17 |
| CVE-2022-35007 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via __interceptor_fwrite.part.57 at sanitizer_common_interceptors.inc. | [email protected] | 6.5 | 0.69% | 2022-08-16 | 2026-06-17 |