[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-5907":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":24,"related":25,"reserved_at":9,"published_at":26,"modified_at":27,"state":28,"summary":29,"references_raw":38,"kevs":92,"epss":93,"epss_history":96,"metrics":354,"affected":359},"CVE-2008-5907","The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\\0' character constant to a NULL pointer.  NOTE: some sources incorrectly report this as a double free vulnerability.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22],{"_key":23},"DSA-1750-1",[],[],"2009-01-15T17:00:00.000Z","2024-08-07T11:13:13.503Z","Modified",{"cisa_kev":30,"cisa_ransomware":30,"cisa_vendor":9,"epss_severity":31,"epss_score":32,"severity":33,"severity_score":34,"severity_version":35,"severity_source":36,"severity_vector":37,"severity_status":28},false,"low",0.00786,"medium",5,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:P/A:N",[39,46,52,58,63,68,73,79,84,88],{"url":40,"sources":41,"tags":43},"http://libpng.sourceforge.net/index.html",[42,36],"cve.org",[44,45],"X Refsource CONFIRM","Third Party Advisory",{"url":47,"sources":48,"tags":49},"http://security.gentoo.org/glsa/glsa-200903-28.xml",[42,36],[50,51,45],"Vendor Advisory","X Refsource GENTOO",{"url":53,"sources":54,"tags":55},"https://exchange.xforce.ibmcloud.com/vulnerabilities/48128",[42,36],[56,57,45],"VDB Entry","X Refsource XF",{"url":59,"sources":60,"tags":61},"http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html",[42,36],[50,62,45],"X Refsource SUSE",{"url":64,"sources":65,"tags":66},"http://secunia.com/advisories/34388",[42,36],[45,67],"X Refsource SECUNIA",{"url":69,"sources":70,"tags":71},"http://www.debian.org/security/2009/dsa-1750",[42,36],[50,72,45],"X Refsource DEBIAN",{"url":74,"sources":75,"tags":76},"http://openwall.com/lists/oss-security/2009/01/09/1",[42,36],[77,78,45],"Mailing List","X Refsource MLIST",{"url":80,"sources":81,"tags":82},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:051",[42,36],[50,83,45],"X Refsource MANDRIVA",{"url":85,"sources":86,"tags":87},"http://secunia.com/advisories/34320",[42,36],[45,67],{"url":89,"sources":90,"tags":91},"http://sourceforge.net/mailarchive/forum.php?thread_name=4B6F0239C13D0245820603C036D180BC79FBAA%40CABOTUKEXCH01.cabot.local&forum_name=png-mng-implement",[42,36],[77,78,45],[],{"date":94,"score":32,"percentile":95},"2026-06-04",0.7417,[97,100,103,105,108,111,114,117,120,123,126,129,132,135,137,140,143,146,149,152,155,157,160,163,166,169,172,175,178,181,184,186,189,191,194,197,200,203,206,209,212,214,216,218,221,224,227,230,233,236,239,242,245,248,251,254,256,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,315,318,320,322,325,328,331,334,337,340,343,345,348,351],{"date":98,"score":32,"percentile":99},"2025-11-04",0.73035,{"date":101,"score":32,"percentile":102},"2025-11-05",0.73021,{"date":104,"score":32,"percentile":102},"2025-11-06",{"date":106,"score":32,"percentile":107},"2025-11-07",0.73038,{"date":109,"score":32,"percentile":110},"2025-11-08",0.73037,{"date":112,"score":32,"percentile":113},"2025-11-09",0.7303,{"date":115,"score":32,"percentile":116},"2025-11-10",0.73024,{"date":118,"score":32,"percentile":119},"2025-11-11",0.73029,{"date":121,"score":32,"percentile":122},"2025-11-12",0.73048,{"date":124,"score":32,"percentile":125},"2025-11-13",0.73052,{"date":127,"score":32,"percentile":128},"2025-11-14",0.73059,{"date":130,"score":32,"percentile":131},"2025-11-15",0.73058,{"date":133,"score":32,"percentile":134},"2025-11-16",0.73053,{"date":136,"score":32,"percentile":122},"2025-11-17",{"date":138,"score":32,"percentile":139},"2025-11-18",0.71692,{"date":141,"score":32,"percentile":142},"2025-11-19",0.71698,{"date":144,"score":32,"percentile":145},"2025-11-20",0.71706,{"date":147,"score":32,"percentile":148},"2025-11-21",0.73064,{"date":150,"score":32,"percentile":151},"2025-11-22",0.73061,{"date":153,"score":32,"percentile":154},"2025-11-23",0.73043,{"date":156,"score":32,"percentile":110},"2025-11-24",{"date":158,"score":32,"percentile":159},"2025-11-25",0.7304,{"date":161,"score":32,"percentile":162},"2025-11-26",0.73046,{"date":164,"score":32,"percentile":165},"2025-11-27",0.73049,{"date":167,"score":32,"percentile":168},"2025-11-28",0.73041,{"date":170,"score":32,"percentile":171},"2025-11-29",0.73032,{"date":173,"score":32,"percentile":174},"2025-11-30",0.73026,{"date":176,"score":32,"percentile":177},"2025-12-01",0.73157,{"date":179,"score":32,"percentile":180},"2025-12-02",0.73168,{"date":182,"score":32,"percentile":183},"2025-12-03",0.73167,{"date":185,"score":32,"percentile":110},"2025-12-04",{"date":187,"score":32,"percentile":188},"2025-12-05",0.73045,{"date":190,"score":32,"percentile":154},"2025-12-06",{"date":192,"score":32,"percentile":193},"2025-12-07",0.73047,{"date":195,"score":32,"percentile":196},"2025-12-08",0.73051,{"date":198,"score":32,"percentile":199},"2025-12-09",0.73079,{"date":201,"score":32,"percentile":202},"2025-12-10",0.73111,{"date":204,"score":32,"percentile":205},"2025-12-11",0.73129,{"date":207,"score":32,"percentile":208},"2025-12-12",0.73152,{"date":210,"score":32,"percentile":211},"2025-12-13",0.73158,{"date":213,"score":32,"percentile":177},"2025-12-14",{"date":215,"score":32,"percentile":211},"2025-12-15",{"date":217,"score":32,"percentile":180},"2025-12-16",{"date":219,"score":32,"percentile":220},"2025-12-17",0.73179,{"date":222,"score":32,"percentile":223},"2025-12-18",0.73201,{"date":225,"score":32,"percentile":226},"2025-12-19",0.73218,{"date":228,"score":32,"percentile":229},"2025-12-20",0.73219,{"date":231,"score":32,"percentile":232},"2025-12-21",0.73214,{"date":234,"score":32,"percentile":235},"2025-12-22",0.73211,{"date":237,"score":32,"percentile":238},"2025-12-23",0.73202,{"date":240,"score":32,"percentile":241},"2025-12-24",0.73212,{"date":243,"score":32,"percentile":244},"2025-12-25",0.73239,{"date":246,"score":32,"percentile":247},"2025-12-26",0.7324,{"date":249,"score":32,"percentile":250},"2025-12-27",0.73254,{"date":252,"score":32,"percentile":253},"2025-12-28",0.73215,{"date":255,"score":32,"percentile":235},"2025-12-29",{"date":257,"score":32,"percentile":258},"2025-12-30",0.73227,{"date":260,"score":32,"percentile":261},"2025-12-31",0.73256,{"date":263,"score":32,"percentile":264},"2026-01-01",0.73407,{"date":266,"score":32,"percentile":267},"2026-01-02",0.73406,{"date":269,"score":32,"percentile":270},"2026-01-03",0.73405,{"date":272,"score":32,"percentile":273},"2026-01-04",0.73267,{"date":275,"score":32,"percentile":276},"2026-01-05",0.73259,{"date":278,"score":32,"percentile":279},"2026-01-06",0.73272,{"date":281,"score":32,"percentile":282},"2026-01-07",0.73282,{"date":284,"score":32,"percentile":285},"2026-01-08",0.73291,{"date":287,"score":32,"percentile":288},"2026-01-09",0.73294,{"date":290,"score":32,"percentile":291},"2026-01-10",0.7329,{"date":293,"score":32,"percentile":294},"2026-01-11",0.7328,{"date":296,"score":32,"percentile":297},"2026-01-12",0.7327,{"date":299,"score":32,"percentile":300},"2026-01-13",0.73268,{"date":302,"score":32,"percentile":303},"2026-01-14",0.73295,{"date":305,"score":32,"percentile":306},"2026-01-15",0.73304,{"date":308,"score":32,"percentile":309},"2026-01-16",0.73321,{"date":311,"score":32,"percentile":312},"2026-01-17",0.73317,{"date":314,"score":32,"percentile":288},"2026-01-18",{"date":316,"score":32,"percentile":317},"2026-01-19",0.73284,{"date":319,"score":32,"percentile":291},"2026-01-20",{"date":321,"score":32,"percentile":288},"2026-01-21",{"date":323,"score":32,"percentile":324},"2026-01-22",0.73301,{"date":326,"score":32,"percentile":327},"2026-01-23",0.7333,{"date":329,"score":32,"percentile":330},"2026-01-24",0.73337,{"date":332,"score":32,"percentile":333},"2026-01-25",0.73322,{"date":335,"score":32,"percentile":336},"2026-01-26",0.73319,{"date":338,"score":32,"percentile":339},"2026-01-27",0.73324,{"date":341,"score":32,"percentile":342},"2026-01-28",0.73338,{"date":344,"score":32,"percentile":342},"2026-01-29",{"date":346,"score":32,"percentile":347},"2026-01-30",0.73344,{"date":349,"score":32,"percentile":350},"2026-01-31",0.73349,{"date":352,"score":32,"percentile":353},"2026-02-01",0.73477,[355],{"source":36,"cvss_v2_0":356,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":34,"baseSeverity":9,"vectorString":37,"impactScore":357,"exploitabilityScore":358},2.9,10,[360,371],{"ecosystem":9,"name":361,"vendor":362,"product":363,"cpe_part":364,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":365},"debian linux","debian","debian_linux","o",[366,369],{"version":367,"is_range":30,"range_type":368,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0","cpe",{"version":370,"is_range":30,"range_type":368,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"ecosystem":9,"name":372,"vendor":372,"product":372,"cpe_part":373,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":374},"libpng","a",[375,380],{"version":376,"is_range":377,"range_type":368,"version_start":9,"version_start_type":9,"version_end":378,"version_end_type":379,"fixed_in":9},"lt1.0.42",true,"1.0.42","excluding",{"version":381,"is_range":377,"range_type":368,"version_start":382,"version_start_type":383,"version_end":384,"version_end_type":379,"fixed_in":9},"gte1.2.0_lt1.2.34","1.2.0","including","1.2.34"]