[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2011-2501":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":33,"duplicate_of":9,"upstream":34,"downstream":35,"duplicates":42,"related":43,"reserved_at":9,"published_at":45,"modified_at":46,"state":47,"summary":48,"references_raw":56,"kevs":169,"epss":170,"epss_history":173,"metrics":432,"affected":443},"CVE-2011-2501","The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data.  NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[24],{"_key":25,"name":26,"source":27,"url":28,"maturity":29,"reliability_score":30,"verified":31,"type":9,"platforms":32,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_610E43255673081F","Exploit Reference (sourceforge.net)","reference","http://sourceforge.net/mailarchive/forum.php?thread_name=BANLkTikrnU6FJNQYFvwmt78hwpgKPVRd1Q%40mail.gmail.com&forum_name=png-mng-implement","unknown",0.2,false,[],[],[],[36,38,40],{"_key":37},"OPENSUSE-SU-2024:10050-1",{"_key":39},"DSA-2287-1",{"_key":41},"RHSA-2011:1105",[],[44],{"_key":37},"2011-07-17T20:00:00.000Z","2024-08-06T23:00:34.249Z","Modified",{"cisa_kev":31,"cisa_ransomware":31,"cisa_vendor":9,"epss_severity":49,"epss_score":50,"severity":51,"severity_score":52,"severity_version":53,"severity_source":54,"severity_vector":55,"severity_status":47},"low",0.02245,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",[57,65,69,75,80,85,91,97,103,108,113,118,123,127,131,136,140,144,149,153,157,161,165],{"url":58,"sources":59,"tags":61},"http://secunia.com/advisories/49660",[60,54],"cve.org",[62,63,64],"Third Party Advisory","X Refsource SECUNIA","Broken Link",{"url":66,"sources":67,"tags":68},"http://secunia.com/advisories/45046",[60,54],[62,63,64],{"url":70,"sources":71,"tags":72},"http://www.ubuntu.com/usn/USN-1175-1",[60,54],[73,74,62],"Vendor Advisory","X Refsource UBUNTU",{"url":76,"sources":77,"tags":78},"http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=65e6d5a34f49acdb362a0625a706c6b914e670af",[60,54],[79],"X Refsource CONFIRM",{"url":81,"sources":82,"tags":83},"http://www.mandriva.com/security/advisories?name=MDVSA-2011:151",[60,54],[73,84,64],"X Refsource MANDRIVA",{"url":86,"sources":87,"tags":88},"http://www.securityfocus.com/bid/48474",[60,54],[89,90,62],"VDB Entry","X Refsource BID",{"url":92,"sources":93,"tags":94},"https://bugzilla.redhat.com/show_bug.cgi?id=717084",[60,54],[79,95,96,62],"Issue Tracking","Patch",{"url":98,"sources":99,"tags":100},"http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.617466",[60,54],[73,101,102,96,62],"X Refsource SLACKWARE","Mailing List",{"url":104,"sources":105,"tags":106},"http://security.gentoo.org/glsa/glsa-201206-15.xml",[60,54],[73,107,62],"X Refsource GENTOO",{"url":109,"sources":110,"tags":111},"http://www.openwall.com/lists/oss-security/2011/06/27/13",[60,54],[102,112,96,62],"X Refsource MLIST",{"url":114,"sources":115,"tags":116},"http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062720.html",[60,54],[73,117,102,62],"X Refsource FEDORA",{"url":119,"sources":120,"tags":121},"https://exchange.xforce.ibmcloud.com/vulnerabilities/68517",[60,54],[89,122,62],"X Refsource XF",{"url":124,"sources":125,"tags":126},"http://secunia.com/advisories/45289",[60,54],[62,63,64],{"url":128,"sources":129,"tags":130},"http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063118.html",[60,54],[73,117,102,62],{"url":132,"sources":133,"tags":134},"http://www.debian.org/security/2011/dsa-2287",[60,54],[73,135,62],"X Refsource DEBIAN",{"url":28,"sources":137,"tags":138},[60,54],[79,139,95,62],"Exploit",{"url":141,"sources":142,"tags":143},"http://secunia.com/advisories/45405",[60,54],[62,63,64],{"url":145,"sources":146,"tags":147},"http://www.redhat.com/support/errata/RHSA-2011-1105.html",[60,54],[73,148,64],"X Refsource REDHAT",{"url":150,"sources":151,"tags":152},"http://www.openwall.com/lists/oss-security/2011/06/28/16",[60,54],[102,112,96,62],{"url":154,"sources":155,"tags":156},"http://secunia.com/advisories/45460",[60,54],[62,63,64],{"url":158,"sources":159,"tags":160},"http://secunia.com/advisories/45486",[60,54],[62,63,64],{"url":162,"sources":163,"tags":164},"http://secunia.com/advisories/45492",[60,54],[62,63,64],{"url":166,"sources":167,"tags":168},"http://secunia.com/advisories/45415",[60,54],[62,63,64],[],{"date":171,"score":50,"percentile":172},"2026-06-04",0.84875,[174,178,181,184,187,190,193,196,198,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,244,246,249,251,254,256,259,262,265,268,270,273,276,279,282,285,288,290,292,295,297,300,303,306,308,311,314,317,320,323,326,329,332,335,338,341,344,347,350,353,356,359,362,365,368,371,374,377,380,383,386,389,392,394,397,400,403,406,409,412,415,417,420,423,426,429],{"date":175,"score":176,"percentile":177},"2025-11-04",0.0121,0.78336,{"date":179,"score":176,"percentile":180},"2025-11-05",0.78334,{"date":182,"score":176,"percentile":183},"2025-11-06",0.7833,{"date":185,"score":176,"percentile":186},"2025-11-07",0.78344,{"date":188,"score":176,"percentile":189},"2025-11-08",0.7835,{"date":191,"score":176,"percentile":192},"2025-11-09",0.78345,{"date":194,"score":176,"percentile":195},"2025-11-10",0.78332,{"date":197,"score":176,"percentile":180},"2025-11-11",{"date":199,"score":176,"percentile":189},"2025-11-12",{"date":201,"score":176,"percentile":202},"2025-11-13",0.78358,{"date":204,"score":176,"percentile":205},"2025-11-14",0.78366,{"date":207,"score":176,"percentile":208},"2025-11-15",0.78364,{"date":210,"score":176,"percentile":211},"2025-11-16",0.78367,{"date":213,"score":176,"percentile":214},"2025-11-17",0.78361,{"date":216,"score":176,"percentile":217},"2025-11-18",0.77217,{"date":219,"score":176,"percentile":220},"2025-11-19",0.77224,{"date":222,"score":176,"percentile":223},"2025-11-20",0.77233,{"date":225,"score":176,"percentile":226},"2025-11-21",0.78389,{"date":228,"score":176,"percentile":229},"2025-11-22",0.7839,{"date":231,"score":176,"percentile":232},"2025-11-23",0.78378,{"date":234,"score":176,"percentile":235},"2025-11-24",0.78377,{"date":237,"score":176,"percentile":238},"2025-11-25",0.78381,{"date":240,"score":176,"percentile":241},"2025-11-26",0.78385,{"date":243,"score":176,"percentile":226},"2025-11-27",{"date":245,"score":176,"percentile":238},"2025-11-28",{"date":247,"score":176,"percentile":248},"2025-11-29",0.78386,{"date":250,"score":176,"percentile":241},"2025-11-30",{"date":252,"score":176,"percentile":253},"2025-12-01",0.78477,{"date":255,"score":176,"percentile":253},"2025-12-02",{"date":257,"score":176,"percentile":258},"2025-12-03",0.78473,{"date":260,"score":176,"percentile":261},"2025-12-04",0.78374,{"date":263,"score":176,"percentile":264},"2025-12-05",0.7838,{"date":266,"score":176,"percentile":267},"2025-12-06",0.78382,{"date":269,"score":176,"percentile":232},"2025-12-07",{"date":271,"score":176,"percentile":272},"2025-12-08",0.78383,{"date":274,"score":176,"percentile":275},"2025-12-09",0.784,{"date":277,"score":176,"percentile":278},"2025-12-10",0.78423,{"date":280,"score":176,"percentile":281},"2025-12-11",0.78439,{"date":283,"score":176,"percentile":284},"2025-12-12",0.78456,{"date":286,"score":176,"percentile":287},"2025-12-13",0.78457,{"date":289,"score":176,"percentile":284},"2025-12-14",{"date":291,"score":176,"percentile":284},"2025-12-15",{"date":293,"score":176,"percentile":294},"2025-12-16",0.78468,{"date":296,"score":176,"percentile":253},"2025-12-17",{"date":298,"score":176,"percentile":299},"2025-12-18",0.78493,{"date":301,"score":176,"percentile":302},"2025-12-19",0.78504,{"date":304,"score":176,"percentile":305},"2025-12-20",0.785,{"date":307,"score":176,"percentile":299},"2025-12-21",{"date":309,"score":176,"percentile":310},"2025-12-22",0.78497,{"date":312,"score":176,"percentile":313},"2025-12-23",0.78499,{"date":315,"score":176,"percentile":316},"2025-12-24",0.78511,{"date":318,"score":176,"percentile":319},"2025-12-25",0.78531,{"date":321,"score":176,"percentile":322},"2025-12-26",0.78529,{"date":324,"score":176,"percentile":325},"2025-12-27",0.78577,{"date":327,"score":176,"percentile":328},"2025-12-28",0.78518,{"date":330,"score":176,"percentile":331},"2025-12-29",0.78513,{"date":333,"score":176,"percentile":334},"2025-12-30",0.78519,{"date":336,"score":176,"percentile":337},"2025-12-31",0.78533,{"date":339,"score":176,"percentile":340},"2026-01-01",0.78637,{"date":342,"score":176,"percentile":343},"2026-01-02",0.78636,{"date":345,"score":176,"percentile":346},"2026-01-03",0.78632,{"date":348,"score":176,"percentile":349},"2026-01-04",0.78528,{"date":351,"score":176,"percentile":352},"2026-01-05",0.78524,{"date":354,"score":176,"percentile":355},"2026-01-06",0.78532,{"date":357,"score":176,"percentile":358},"2026-01-07",0.78538,{"date":360,"score":176,"percentile":361},"2026-01-08",0.78546,{"date":363,"score":176,"percentile":364},"2026-01-09",0.78549,{"date":366,"score":176,"percentile":367},"2026-01-10",0.78553,{"date":369,"score":176,"percentile":370},"2026-01-11",0.78547,{"date":372,"score":176,"percentile":373},"2026-01-12",0.78535,{"date":375,"score":176,"percentile":376},"2026-01-13",0.7853,{"date":378,"score":176,"percentile":379},"2026-01-14",0.78551,{"date":381,"score":176,"percentile":382},"2026-01-15",0.78554,{"date":384,"score":176,"percentile":385},"2026-01-16",0.7856,{"date":387,"score":176,"percentile":388},"2026-01-17",0.78568,{"date":390,"score":176,"percentile":391},"2026-01-18",0.78565,{"date":393,"score":176,"percentile":391},"2026-01-19",{"date":395,"score":50,"percentile":396},"2026-01-20",0.84141,{"date":398,"score":50,"percentile":399},"2026-01-21",0.84148,{"date":401,"score":50,"percentile":402},"2026-01-22",0.84153,{"date":404,"score":50,"percentile":405},"2026-01-23",0.84171,{"date":407,"score":50,"percentile":408},"2026-01-24",0.8418,{"date":410,"score":50,"percentile":411},"2026-01-25",0.84179,{"date":413,"score":50,"percentile":414},"2026-01-26",0.84177,{"date":416,"score":50,"percentile":408},"2026-01-27",{"date":418,"score":50,"percentile":419},"2026-01-28",0.84183,{"date":421,"score":50,"percentile":422},"2026-01-29",0.84184,{"date":424,"score":50,"percentile":425},"2026-01-30",0.84188,{"date":427,"score":50,"percentile":428},"2026-01-31",0.8419,{"date":430,"score":50,"percentile":431},"2026-02-01",0.8426,[433],{"source":54,"cvss_v2_0":434,"cvss_v3_0":9,"cvss_v3_1":439,"cvss_v4_0":9},{"baseScore":435,"baseSeverity":9,"vectorString":436,"impactScore":437,"exploitabilityScore":438},4.3,"AV:N/AC:M/Au:N/C:N/I:N/A:P",2.9,8.6,{"baseScore":52,"baseSeverity":440,"vectorString":55,"impactScore":441,"exploitabilityScore":442},"MEDIUM",6,7.2,[444,459,468,474],{"ecosystem":9,"name":445,"vendor":446,"product":447,"cpe_part":448,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":449},"ubuntu linux","canonical","ubuntu_linux","o",[450,453,455,457],{"version":451,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04","cpe",{"version":454,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.04",{"version":456,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.10",{"version":458,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.04",{"ecosystem":9,"name":460,"vendor":461,"product":462,"cpe_part":448,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":463},"debian linux","debian","debian_linux",[464,466],{"version":465,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"version":467,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"ecosystem":9,"name":469,"vendor":470,"product":469,"cpe_part":448,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":471},"fedora","fedoraproject",[472],{"version":473,"is_range":31,"range_type":452,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14",{"ecosystem":9,"name":475,"vendor":475,"product":475,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"libpng","a",[478,485,489,493],{"version":479,"is_range":480,"range_type":452,"version_start":481,"version_start_type":482,"version_end":483,"version_end_type":484,"fixed_in":9},"gte1.0.0_lt1.0.55",true,"1.0.0","including","1.0.55","excluding",{"version":486,"is_range":480,"range_type":452,"version_start":487,"version_start_type":482,"version_end":488,"version_end_type":484,"fixed_in":9},"gte1.2.0_lt1.2.45","1.2.0","1.2.45",{"version":490,"is_range":480,"range_type":452,"version_start":491,"version_start_type":482,"version_end":492,"version_end_type":484,"fixed_in":9},"gte1.4.0_lt1.4.8","1.4.0","1.4.8",{"version":494,"is_range":480,"range_type":452,"version_start":495,"version_start_type":482,"version_end":496,"version_end_type":484,"fixed_in":9},"gte1.5.0_lt1.5.4","1.5.0","1.5.4"]