NVD Vulnerability Detail

CVE-2015-8540

Summary	Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.26 allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.
Publication Date	April 14, 2016, 11:59 p.m.
Registration Date	Jan. 26, 2021, 2:58 p.m.
Last Update	Nov. 21, 2024, 11:38 a.m.

CVSS3.0 : HIGH
スコア	8.8
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	不要
利用者の関与(UI)	要
影響の想定範囲(S)	変更なし
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高

CVSS2.0 : HIGH
Score	9.3
Vector	AV:N/AC:M/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	はい

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:5.0:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.2.14:::::::*
cpe:2.3:a:libpng:libpng:1.2.45:devel::::::
cpe:2.3:a:libpng:libpng:1.2.46:devel::::::
cpe:2.3:a:libpng:libpng:1.2.33:::::::*
cpe:2.3:a:libpng:libpng:1.2.16:::::::*
cpe:2.3:a:libpng:libpng:1.2.35:::::::*
cpe:2.3:a:libpng:libpng:1.2.29:::::::*
cpe:2.3:a:libpng:libpng:1.2.26:::::::*
cpe:2.3:a:libpng:libpng:1.2.54:::::::*
cpe:2.3:a:libpng:libpng:1.2.7:::::::*
cpe:2.3:a:libpng:libpng:1.2.43:::::::*
cpe:2.3:a:libpng:libpng:1.2.46:::::::*
cpe:2.3:a:libpng:libpng:1.2.2:::::::*
cpe:2.3:a:libpng:libpng:1.2.4:::::::*
cpe:2.3:a:libpng:libpng:1.2.22:::::::*
cpe:2.3:a:libpng:libpng:1.2.39:::::::*
cpe:2.3:a:libpng:libpng:1.2.48:betas::::::
cpe:2.3:a:libpng:libpng:1.2.55:::::::*
cpe:2.3:a:libpng:libpng:1.2.50:::::::*
cpe:2.3:a:libpng:libpng:1.2.44:::::::*
cpe:2.3:a:libpng:libpng:1.2.0:::::::*
cpe:2.3:a:libpng:libpng:1.2.12:::::::*
cpe:2.3:a:libpng:libpng:1.2.47:::::::*
cpe:2.3:a:libpng:libpng:1.2.27:::::::*
cpe:2.3:a:libpng:libpng:1.2.18:::::::*
cpe:2.3:a:libpng:libpng:1.2.21:::::::*
cpe:2.3:a:libpng:libpng:1.2.30:::::::*
cpe:2.3:a:libpng:libpng:1.2.36:::::::*
cpe:2.3:a:libpng:libpng:1.2.20:::::::*
cpe:2.3:a:libpng:libpng:1.2.47:beta::::::
cpe:2.3:a:libpng:libpng:1.2.49:::::::*
cpe:2.3:a:libpng:libpng:1.2.10:::::::*
cpe:2.3:a:libpng:libpng:1.2.43:devel::::::
cpe:2.3:a:libpng:libpng:1.2.38:::::::*
cpe:2.3:a:libpng:libpng:1.2.41:::::::*
cpe:2.3:a:libpng:libpng:1.2.8:::::::*
cpe:2.3:a:libpng:libpng:1.2.32:::::::*
cpe:2.3:a:libpng:libpng:1.2.3:::::::*
cpe:2.3:a:libpng:libpng:1.2.28:::::::*
cpe:2.3:a:libpng:libpng:1.2.15:::::::*
cpe:2.3:a:libpng:libpng:1.2.1:::::::*
cpe:2.3:a:libpng:libpng:1.2.13:::::::*
cpe:2.3:a:libpng:libpng:1.2.17:::::::*
cpe:2.3:a:libpng:libpng:1.2.11:::::::*
cpe:2.3:a:libpng:libpng:1.2.53:::::::*
cpe:2.3:a:libpng:libpng:1.2.23:::::::*
cpe:2.3:a:libpng:libpng:1.2.40:::::::*
cpe:2.3:a:libpng:libpng:1.2.5:::::::*
cpe:2.3:a:libpng:libpng:1.2.45:::::::*
cpe:2.3:a:libpng:libpng:1.2.34:::::::*
cpe:2.3:a:libpng:libpng:1.2.51:::::::*
cpe:2.3:a:libpng:libpng:1.2.6:::::::*
cpe:2.3:a:libpng:libpng:1.2.31:::::::*
cpe:2.3:a:libpng:libpng:1.2.19:::::::*
cpe:2.3:a:libpng:libpng:1.2.9:::::::*
cpe:2.3:a:libpng:libpng:1.2.52:::::::*
cpe:2.3:a:libpng:libpng:1.2.48:::::::*
cpe:2.3:a:libpng:libpng:1.2.24:::::::*
cpe:2.3:a:libpng:libpng:1.2.25:::::::*
cpe:2.3:a:libpng:libpng:1.2.37:::::::*
cpe:2.3:a:libpng:libpng:1.2.42:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.1.1:::::::*

Configuration4	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.0.37:::::::*
cpe:2.3:a:libpng:libpng:1.0.41:::::::*
cpe:2.3:a:libpng:libpng:1.0.46:::::::*
cpe:2.3:a:libpng:libpng:1.0.65:::::::*
cpe:2.3:a:libpng:libpng:1.0.1:::::::*
cpe:2.3:a:libpng:libpng:1.0.8:::::::*
cpe:2.3:a:libpng:libpng:1.0.55:rc01::::::
cpe:2.3:a:libpng:libpng:1.0.14:::::::*
cpe:2.3:a:libpng:libpng:1.0.17:::::::*
cpe:2.3:a:libpng:libpng:1.0.35:::::::*
cpe:2.3:a:libpng:libpng:1.0.52:::::::*
cpe:2.3:a:libpng:libpng:1.0.27:::::::*
cpe:2.3:a:libpng:libpng:1.0.22:::::::*
cpe:2.3:a:libpng:libpng:1.0.11:::::::*
cpe:2.3:a:libpng:libpng:1.0.20:::::::*
cpe:2.3:a:libpng:libpng:1.0.55:::::::*
cpe:2.3:a:libpng:libpng:1.0.9:::::::*
cpe:2.3:a:libpng:libpng:1.0.13:::::::*
cpe:2.3:a:libpng:libpng:1.0.44:::::::*
cpe:2.3:a:libpng:libpng:1.0.6:::::::*
cpe:2.3:a:libpng:libpng:1.0.32:::::::*
cpe:2.3:a:libpng:libpng:1.0.50:::::::*
cpe:2.3:a:libpng:libpng:1.0.57:rc01::::::
cpe:2.3:a:libpng:libpng:1.0.34:::::::*
cpe:2.3:a:libpng:libpng:1.0.25:::::::*
cpe:2.3:a:libpng:libpng:1.0.21:::::::*
cpe:2.3:a:libpng:libpng:1.0.43:::::::*
cpe:2.3:a:libpng:libpng:1.0.38:::::::*
cpe:2.3:a:libpng:libpng:1.0.3:::::::*
cpe:2.3:a:libpng:libpng:1.0.40:::::::*
cpe:2.3:a:libpng:libpng:1.0.51:::::::*
cpe:2.3:a:libpng:libpng:1.0.18:::::::*
cpe:2.3:a:libpng:libpng:1.0.64:::::::*
cpe:2.3:a:libpng:libpng:1.0.54:::::::*
cpe:2.3:a:libpng:libpng:1.0.7:::::::*
cpe:2.3:a:libpng:libpng:1.0.16:::::::*
cpe:2.3:a:libpng:libpng:1.0.59:::::::*
cpe:2.3:a:libpng:libpng:1.0.2:::::::*
cpe:2.3:a:libpng:libpng:1.0.5:::::::*
cpe:2.3:a:libpng:libpng:1.0.29:::::::*
cpe:2.3:a:libpng:libpng:1.0.56:::::::*
cpe:2.3:a:libpng:libpng:1.0.39:::::::*
cpe:2.3:a:libpng:libpng:1.0.42:::::::*
cpe:2.3:a:libpng:libpng:1.0.24:::::::*
cpe:2.3:a:libpng:libpng:1.0.61:::::::*
cpe:2.3:a:libpng:libpng:1.0.12:::::::*
cpe:2.3:a:libpng:libpng:1.0.15:::::::*
cpe:2.3:a:libpng:libpng:1.0.19:::::::*
cpe:2.3:a:libpng:libpng:1.0.57:::::::*
cpe:2.3:a:libpng:libpng:1.0.62:::::::*
cpe:2.3:a:libpng:libpng:1.0.28:::::::*
cpe:2.3:a:libpng:libpng:1.0.47:::::::*
cpe:2.3:a:libpng:libpng:1.0.48:::::::*
cpe:2.3:a:libpng:libpng:1.0.45:::::::*
cpe:2.3:a:libpng:libpng:1.0.26:::::::*
cpe:2.3:a:libpng:libpng:1.0.60:::::::*
cpe:2.3:a:libpng:libpng:1.0.33:::::::*
cpe:2.3:a:libpng:libpng:1.0.0:::::::*
cpe:2.3:a:libpng:libpng:1.0.53:::::::*
cpe:2.3:a:libpng:libpng:1.0.23:::::::*
cpe:2.3:a:libpng:libpng:1.0.56:devel::::::
cpe:2.3:a:libpng:libpng:1.0.63:::::::*
cpe:2.3:a:libpng:libpng:1.0.30:::::::*
cpe:2.3:a:libpng:libpng:1.0.10:::::::*
cpe:2.3:a:libpng:libpng:1.0.31:::::::*
cpe:2.3:a:libpng:libpng:1.0.58:::::::*

Configuration5		or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:23:::::::*

Configuration6		or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:6.0:::::::*

Configuration7	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.4.9:::::::*
cpe:2.3:a:libpng:libpng:1.4.12:::::::*
cpe:2.3:a:libpng:libpng:1.4.11:::::::*
cpe:2.3:a:libpng:libpng:1.4.15:::::::*
cpe:2.3:a:libpng:libpng:1.4.4:::::::*
cpe:2.3:a:libpng:libpng:1.4.7:::::::*
cpe:2.3:a:libpng:libpng:1.4.1:::::::*
cpe:2.3:a:libpng:libpng:1.4.10:::::::*
cpe:2.3:a:libpng:libpng:1.4.2:::::::*
cpe:2.3:a:libpng:libpng:1.4.18:::::::*
cpe:2.3:a:libpng:libpng:1.4.0:::::::*
cpe:2.3:a:libpng:libpng:1.4.13:::::::*
cpe:2.3:a:libpng:libpng:1.4.6:::::::*
cpe:2.3:a:libpng:libpng:1.4.5:::::::*
cpe:2.3:a:libpng:libpng:1.4.3:::::::*
cpe:2.3:a:libpng:libpng:1.4.16:::::::*
cpe:2.3:a:libpng:libpng:1.4.8:::::::*
cpe:2.3:a:libpng:libpng:1.4.14:::::::*
cpe:2.3:a:libpng:libpng:1.4.17:::::::*

Configuration8	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:0.98:::::::*
cpe:2.3:a:libpng:libpng:0.95:::::::*
cpe:2.3:a:libpng:libpng:0.90:::::::*
cpe:2.3:a:libpng:libpng:0.97:::::::*
cpe:2.3:a:libpng:libpng:0.99:::::::*
cpe:2.3:a:libpng:libpng:0.96:::::::*

Configuration9	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.5.14:::::::*
cpe:2.3:a:libpng:libpng:1.5.9:beta::::::
cpe:2.3:a:libpng:libpng:1.5.8:::::::*
cpe:2.3:a:libpng:libpng:1.5.23:::::::*
cpe:2.3:a:libpng:libpng:1.5.7:::::::*
cpe:2.3:a:libpng:libpng:1.5.1:::::::*
cpe:2.3:a:libpng:libpng:1.5.6:beta::::::
cpe:2.3:a:libpng:libpng:1.5.19:::::::*
cpe:2.3:a:libpng:libpng:1.5.3:beta::::::
cpe:2.3:a:libpng:libpng:1.5.9:::::::*
cpe:2.3:a:libpng:libpng:1.5.12:::::::*
cpe:2.3:a:libpng:libpng:1.5.11:beta::::::
cpe:2.3:a:libpng:libpng:1.5.21:::::::*
cpe:2.3:a:libpng:libpng:1.5.20:beta::::::
cpe:2.3:a:libpng:libpng:1.5.8:beta::::::
cpe:2.3:a:libpng:libpng:1.5.4:beta::::::
cpe:2.3:a:libpng:libpng:1.5.5:::::::*
cpe:2.3:a:libpng:libpng:1.5.10:beta::::::
cpe:2.3:a:libpng:libpng:1.5.15:::::::*
cpe:2.3:a:libpng:libpng:1.5.17:::::::*
cpe:2.3:a:libpng:libpng:1.5.0:beta::::::
cpe:2.3:a:libpng:libpng:1.5.1:beta::::::
cpe:2.3:a:libpng:libpng:1.5.4:::::::*
cpe:2.3:a:libpng:libpng:1.5.6:::::::*
cpe:2.3:a:libpng:libpng:1.5.11:::::::*
cpe:2.3:a:libpng:libpng:1.5.5:beta::::::
cpe:2.3:a:libpng:libpng:1.5.13:beta::::::
cpe:2.3:a:libpng:libpng:1.5.2:::::::*
cpe:2.3:a:libpng:libpng:1.5.22:::::::*
cpe:2.3:a:libpng:libpng:1.5.18:::::::*
cpe:2.3:a:libpng:libpng:1.5.7:beta::::::
cpe:2.3:a:libpng:libpng:1.5.24:::::::*
cpe:2.3:a:libpng:libpng:1.5.16:::::::*
cpe:2.3:a:libpng:libpng:1.5.25:::::::*
cpe:2.3:a:libpng:libpng:1.5.13:::::::*
cpe:2.3:a:libpng:libpng:1.5.2:beta::::::

Configuration10		or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.3.0:::::::*

Related information, measures and tools

No	URL	タグ
1	http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174435.html
2	http://lists.fedoraproject.org/pipermail/package-announce/2015-December/174435.html
3	http://sourceforge.net/p/libpng/bugs/244/
4	http://sourceforge.net/p/libpng/bugs/244/
5	http://sourceforge.net/p/libpng/code/ci/d9006f683c641793252d92254a75ae9b815b42ed/
6	http://sourceforge.net/p/libpng/code/ci/d9006f683c641793252d92254a75ae9b815b42ed/
7	http://sourceforge.net/projects/libpng/files/libpng10/1.0.66/	Patch
8	http://sourceforge.net/projects/libpng/files/libpng10/1.0.66/	Patch
9	http://sourceforge.net/projects/libpng/files/libpng12/1.2.56/	Patch
10	http://sourceforge.net/projects/libpng/files/libpng12/1.2.56/	Patch
11	http://sourceforge.net/projects/libpng/files/libpng14/1.4.19/	Patch
12	http://sourceforge.net/projects/libpng/files/libpng14/1.4.19/	Patch
13	http://sourceforge.net/projects/libpng/files/libpng15/1.5.26/	Patch
14	http://sourceforge.net/projects/libpng/files/libpng15/1.5.26/	Patch
15	http://www.debian.org/security/2016/dsa-3443
16	http://www.debian.org/security/2016/dsa-3443
17	http://www.openwall.com/lists/oss-security/2015/12/10/6
18	http://www.openwall.com/lists/oss-security/2015/12/10/6
19	http://www.openwall.com/lists/oss-security/2015/12/10/7
20	http://www.openwall.com/lists/oss-security/2015/12/10/7
21	http://www.openwall.com/lists/oss-security/2015/12/11/1
22	http://www.openwall.com/lists/oss-security/2015/12/11/1
23	http://www.openwall.com/lists/oss-security/2015/12/11/2
24	http://www.openwall.com/lists/oss-security/2015/12/11/2
25	http://www.openwall.com/lists/oss-security/2015/12/17/10
26	http://www.openwall.com/lists/oss-security/2015/12/17/10
27	http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
28	http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
29	http://www.securityfocus.com/bid/80592
30	http://www.securityfocus.com/bid/80592
31	https://access.redhat.com/errata/RHSA-2016:1430
32	https://access.redhat.com/errata/RHSA-2016:1430
33	https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
34	https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
35	https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
36	https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
37	https://security.gentoo.org/glsa/201611-08
38	https://security.gentoo.org/glsa/201611-08

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

JVN Vulnerability Information

libpng の pngwutil.c の png_check_keyword 関数における整数アンダーフローの脆弱性

Title	libpng の pngwutil.c の png_check_keyword 関数における整数アンダーフローの脆弱性
Summary	libpng の pngwutil.c の png_check_keyword 関数には、整数アンダーフローの脆弱性が存在します。
Possible impacts	第三者により、PNG 画像のキーワードとしての空白文字を介して、境界外読み取りを誘発されることで、不特定の影響を受ける可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Dec. 17, 2015, midnight
Registration Date	April 21, 2016, 5:38 p.m.
Last Update	April 21, 2016, 5:38 p.m.

Affected System

レッドハット

Red Hat Enterprise Linux Desktop Supplementary (v. 6)

Red Hat Enterprise Linux Desktop Supplementary (v. 7)

Red Hat Enterprise Linux HPC Node Supplementary (v. 6)

Red Hat Enterprise Linux HPC Node Supplementary (v. 7)

Red Hat Enterprise Linux Server Supplementary (v. 6)

Red Hat Enterprise Linux Server Supplementary (v. 7)

Red Hat Enterprise Linux Server Supplementary EUS (v. 6.7.z)

Red Hat Enterprise Linux Workstation Supplementary (v. 6)

Red Hat Enterprise Linux Workstation Supplementary (v. 7)

RHEL Desktop Supplementary (v. 5 client)

RHEL Supplementary (v. 5 server)

Debian

Debian GNU/Linux 6.0

Fedora Project

Fedora 23

PNG Development Group

libpng 0.90 から 0.99

libpng 1.0.66 未満の 1.0.x

libpng 1.1.x

libpng 1.2.56 未満の 1.2.x

libpng 1.3.x

libpng 1.4.19 未満の 1.4.x

libpng 1.5.26 未満の 1.5.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2015-8540	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540
National Vulnerability Database (NVD)
2	CVE-2015-8540	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8540

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-189	https://jvndb.jvn.jp/ja/cwe/CWE-189.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-3443	https://www.debian.org/security/2016/dsa-3443.en.html
Fedora Update Notification
2	FEDORA-2015-3868cfa17b	https://lists.fedoraproject.org/pipermail/package-announce/2015-December/174435.html
Red Hat Security Advisory
3	RHSA-2016:0099	https://rhn.redhat.com/errata/RHSA-2016-0099.html
4	RHSA-2016:0100	https://rhn.redhat.com/errata/RHSA-2016-0100.html
5	RHSA-2016:0101	https://rhn.redhat.com/errata/RHSA-2016-0101.html
SourceForge
6	#244 read underflow in libpng 1.2.55, 1.0.65, 1.4.18, and 1.5.25 (pngwutil.c)	https://sourceforge.net/p/libpng/bugs/244/
7	libpng10 / 1.0.66	https://sourceforge.net/projects/libpng/files/libpng10/1.0.66/
8	libpng12 / 1.2.56	https://sourceforge.net/projects/libpng/files/libpng12/1.2.56/
9	libpng14 / 1.4.19	https://sourceforge.net/projects/libpng/files/libpng14/1.4.19/
10	libpng15 / 1.5.26	https://sourceforge.net/projects/libpng/files/libpng15/1.5.26/
11	[libpng15] Fixed an out-of-range read in png_check_keyword() (Bug report from Qixue Xiao).	https://sourceforge.net/p/libpng/code/ci/d9006f683c641793252d92254a75ae9b815b42ed/

Change Log

No	Changed Details	Date of change
0	[2016年04月21日] 掲載	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_supplementary:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:5.0:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.2.14:::::::*
cpe:2.3:a:libpng:libpng:1.2.45:devel::::::
cpe:2.3:a:libpng:libpng:1.2.46:devel::::::
cpe:2.3:a:libpng:libpng:1.2.33:::::::*
cpe:2.3:a:libpng:libpng:1.2.16:::::::*
cpe:2.3:a:libpng:libpng:1.2.35:::::::*
cpe:2.3:a:libpng:libpng:1.2.29:::::::*
cpe:2.3:a:libpng:libpng:1.2.26:::::::*
cpe:2.3:a:libpng:libpng:1.2.54:::::::*
cpe:2.3:a:libpng:libpng:1.2.7:::::::*
cpe:2.3:a:libpng:libpng:1.2.43:::::::*
cpe:2.3:a:libpng:libpng:1.2.46:::::::*
cpe:2.3:a:libpng:libpng:1.2.2:::::::*
cpe:2.3:a:libpng:libpng:1.2.4:::::::*
cpe:2.3:a:libpng:libpng:1.2.22:::::::*
cpe:2.3:a:libpng:libpng:1.2.39:::::::*
cpe:2.3:a:libpng:libpng:1.2.48:betas::::::
cpe:2.3:a:libpng:libpng:1.2.55:::::::*
cpe:2.3:a:libpng:libpng:1.2.50:::::::*
cpe:2.3:a:libpng:libpng:1.2.44:::::::*
cpe:2.3:a:libpng:libpng:1.2.0:::::::*
cpe:2.3:a:libpng:libpng:1.2.12:::::::*
cpe:2.3:a:libpng:libpng:1.2.47:::::::*
cpe:2.3:a:libpng:libpng:1.2.27:::::::*
cpe:2.3:a:libpng:libpng:1.2.18:::::::*
cpe:2.3:a:libpng:libpng:1.2.21:::::::*
cpe:2.3:a:libpng:libpng:1.2.30:::::::*
cpe:2.3:a:libpng:libpng:1.2.36:::::::*
cpe:2.3:a:libpng:libpng:1.2.20:::::::*
cpe:2.3:a:libpng:libpng:1.2.47:beta::::::
cpe:2.3:a:libpng:libpng:1.2.49:::::::*
cpe:2.3:a:libpng:libpng:1.2.10:::::::*
cpe:2.3:a:libpng:libpng:1.2.43:devel::::::
cpe:2.3:a:libpng:libpng:1.2.38:::::::*
cpe:2.3:a:libpng:libpng:1.2.41:::::::*
cpe:2.3:a:libpng:libpng:1.2.8:::::::*
cpe:2.3:a:libpng:libpng:1.2.32:::::::*
cpe:2.3:a:libpng:libpng:1.2.3:::::::*
cpe:2.3:a:libpng:libpng:1.2.28:::::::*
cpe:2.3:a:libpng:libpng:1.2.15:::::::*
cpe:2.3:a:libpng:libpng:1.2.1:::::::*
cpe:2.3:a:libpng:libpng:1.2.13:::::::*
cpe:2.3:a:libpng:libpng:1.2.17:::::::*
cpe:2.3:a:libpng:libpng:1.2.11:::::::*
cpe:2.3:a:libpng:libpng:1.2.53:::::::*
cpe:2.3:a:libpng:libpng:1.2.23:::::::*
cpe:2.3:a:libpng:libpng:1.2.40:::::::*
cpe:2.3:a:libpng:libpng:1.2.5:::::::*
cpe:2.3:a:libpng:libpng:1.2.45:::::::*
cpe:2.3:a:libpng:libpng:1.2.34:::::::*
cpe:2.3:a:libpng:libpng:1.2.51:::::::*
cpe:2.3:a:libpng:libpng:1.2.6:::::::*
cpe:2.3:a:libpng:libpng:1.2.31:::::::*
cpe:2.3:a:libpng:libpng:1.2.19:::::::*
cpe:2.3:a:libpng:libpng:1.2.9:::::::*
cpe:2.3:a:libpng:libpng:1.2.52:::::::*
cpe:2.3:a:libpng:libpng:1.2.48:::::::*
cpe:2.3:a:libpng:libpng:1.2.24:::::::*
cpe:2.3:a:libpng:libpng:1.2.25:::::::*
cpe:2.3:a:libpng:libpng:1.2.37:::::::*
cpe:2.3:a:libpng:libpng:1.2.42:::::::*

Configuration4	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.0.37:::::::*
cpe:2.3:a:libpng:libpng:1.0.41:::::::*
cpe:2.3:a:libpng:libpng:1.0.46:::::::*
cpe:2.3:a:libpng:libpng:1.0.65:::::::*
cpe:2.3:a:libpng:libpng:1.0.1:::::::*
cpe:2.3:a:libpng:libpng:1.0.8:::::::*
cpe:2.3:a:libpng:libpng:1.0.55:rc01::::::
cpe:2.3:a:libpng:libpng:1.0.14:::::::*
cpe:2.3:a:libpng:libpng:1.0.17:::::::*
cpe:2.3:a:libpng:libpng:1.0.35:::::::*
cpe:2.3:a:libpng:libpng:1.0.52:::::::*
cpe:2.3:a:libpng:libpng:1.0.27:::::::*
cpe:2.3:a:libpng:libpng:1.0.22:::::::*
cpe:2.3:a:libpng:libpng:1.0.11:::::::*
cpe:2.3:a:libpng:libpng:1.0.20:::::::*
cpe:2.3:a:libpng:libpng:1.0.55:::::::*
cpe:2.3:a:libpng:libpng:1.0.9:::::::*
cpe:2.3:a:libpng:libpng:1.0.13:::::::*
cpe:2.3:a:libpng:libpng:1.0.44:::::::*
cpe:2.3:a:libpng:libpng:1.0.6:::::::*
cpe:2.3:a:libpng:libpng:1.0.32:::::::*
cpe:2.3:a:libpng:libpng:1.0.50:::::::*
cpe:2.3:a:libpng:libpng:1.0.57:rc01::::::
cpe:2.3:a:libpng:libpng:1.0.34:::::::*
cpe:2.3:a:libpng:libpng:1.0.25:::::::*
cpe:2.3:a:libpng:libpng:1.0.21:::::::*
cpe:2.3:a:libpng:libpng:1.0.43:::::::*
cpe:2.3:a:libpng:libpng:1.0.38:::::::*
cpe:2.3:a:libpng:libpng:1.0.3:::::::*
cpe:2.3:a:libpng:libpng:1.0.40:::::::*
cpe:2.3:a:libpng:libpng:1.0.51:::::::*
cpe:2.3:a:libpng:libpng:1.0.18:::::::*
cpe:2.3:a:libpng:libpng:1.0.64:::::::*
cpe:2.3:a:libpng:libpng:1.0.54:::::::*
cpe:2.3:a:libpng:libpng:1.0.7:::::::*
cpe:2.3:a:libpng:libpng:1.0.16:::::::*
cpe:2.3:a:libpng:libpng:1.0.59:::::::*
cpe:2.3:a:libpng:libpng:1.0.2:::::::*
cpe:2.3:a:libpng:libpng:1.0.5:::::::*
cpe:2.3:a:libpng:libpng:1.0.29:::::::*
cpe:2.3:a:libpng:libpng:1.0.56:::::::*
cpe:2.3:a:libpng:libpng:1.0.39:::::::*
cpe:2.3:a:libpng:libpng:1.0.42:::::::*
cpe:2.3:a:libpng:libpng:1.0.24:::::::*
cpe:2.3:a:libpng:libpng:1.0.61:::::::*
cpe:2.3:a:libpng:libpng:1.0.12:::::::*
cpe:2.3:a:libpng:libpng:1.0.15:::::::*
cpe:2.3:a:libpng:libpng:1.0.19:::::::*
cpe:2.3:a:libpng:libpng:1.0.57:::::::*
cpe:2.3:a:libpng:libpng:1.0.62:::::::*
cpe:2.3:a:libpng:libpng:1.0.28:::::::*
cpe:2.3:a:libpng:libpng:1.0.47:::::::*
cpe:2.3:a:libpng:libpng:1.0.48:::::::*
cpe:2.3:a:libpng:libpng:1.0.45:::::::*
cpe:2.3:a:libpng:libpng:1.0.26:::::::*
cpe:2.3:a:libpng:libpng:1.0.60:::::::*
cpe:2.3:a:libpng:libpng:1.0.33:::::::*
cpe:2.3:a:libpng:libpng:1.0.0:::::::*
cpe:2.3:a:libpng:libpng:1.0.53:::::::*
cpe:2.3:a:libpng:libpng:1.0.23:::::::*
cpe:2.3:a:libpng:libpng:1.0.56:devel::::::
cpe:2.3:a:libpng:libpng:1.0.63:::::::*
cpe:2.3:a:libpng:libpng:1.0.30:::::::*
cpe:2.3:a:libpng:libpng:1.0.10:::::::*
cpe:2.3:a:libpng:libpng:1.0.31:::::::*
cpe:2.3:a:libpng:libpng:1.0.58:::::::*

Configuration7	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:1.4.9:::::::*
cpe:2.3:a:libpng:libpng:1.4.12:::::::*
cpe:2.3:a:libpng:libpng:1.4.11:::::::*
cpe:2.3:a:libpng:libpng:1.4.15:::::::*
cpe:2.3:a:libpng:libpng:1.4.4:::::::*
cpe:2.3:a:libpng:libpng:1.4.7:::::::*
cpe:2.3:a:libpng:libpng:1.4.1:::::::*
cpe:2.3:a:libpng:libpng:1.4.10:::::::*
cpe:2.3:a:libpng:libpng:1.4.2:::::::*
cpe:2.3:a:libpng:libpng:1.4.18:::::::*
cpe:2.3:a:libpng:libpng:1.4.0:::::::*
cpe:2.3:a:libpng:libpng:1.4.13:::::::*
cpe:2.3:a:libpng:libpng:1.4.6:::::::*
cpe:2.3:a:libpng:libpng:1.4.5:::::::*
cpe:2.3:a:libpng:libpng:1.4.3:::::::*
cpe:2.3:a:libpng:libpng:1.4.16:::::::*
cpe:2.3:a:libpng:libpng:1.4.8:::::::*
cpe:2.3:a:libpng:libpng:1.4.14:::::::*
cpe:2.3:a:libpng:libpng:1.4.17:::::::*

Configuration8	or higher	or less	more than	less than
cpe:2.3:a:libpng:libpng:0.98:::::::*
cpe:2.3:a:libpng:libpng:0.95:::::::*
cpe:2.3:a:libpng:libpng:0.90:::::::*
cpe:2.3:a:libpng:libpng:0.97:::::::*
cpe:2.3:a:libpng:libpng:0.99:::::::*
cpe:2.3:a:libpng:libpng:0.96:::::::*