CVE-2021-4214 | libpng16-16 (CWE-1035)

A low severity vulnerability has been discovered in your project.

Project Name: IssueTest

Scanner Name: trivy

Cwe ID: 1035

Cwe Name: Using Components with Known Vulnerabilities

Cwe Link: https://cwe.mitre.org/data/definitions/1035.html

CVE ID: CVE-2021-4214

Target: nginx:latest (debian 11.3)

Packages:

libpng16-16 : 1.6.37-3 - Fixed Version:

Kondukto Remediation

1: testremed 2: test 3: Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed Random remed

Tool Description: A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.

Custom Description: NEW ENDPOINT TEST

endpointlabs / VulnerableDotNetCore3Project

CVE-2021-4214 | libpng16-16 (CWE-1035) #21