{"id":"CVE-2021-4214","details":"A heap overflow flaw was found in libpngs' pngimage.c program. This flaw allows an attacker with local network access to pass a specially crafted PNG file to the pngimage utility, causing an application to crash, leading to a denial of service.","modified":"2026-04-10T04:38:58.236740Z","published":"2022-08-24T16:15:10.037Z","references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2021-4214"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20221020-0001/"},{"type":"ADVISORY","url":"https://access.redhat.com/security/cve/CVE-2021-4214"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2043393"},{"type":"EVIDENCE","url":"https://github.com/glennrp/libpng/issues/302"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pnggroup/libpng","events":[{"introduced":"0"},{"last_affected":"c53778ff53a73ad2d676602f5dc7019566be5058"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.6.0-NA"}]}}],"versions":["v0.71","v0.81","v0.82","v0.85","v0.86","v0.87","v0.88","v0.89","v0.89c","v0.90","v0.96","v0.97","v0.97a","v0.97c","v0.98","v0.99","v0.99a","v0.99c","v0.99d","v0.99e","v0.99i","v0.99j","v0.99k","v0.99m","v0.99n","v0.99p","v1.0.0","v1.0.0a","v1.0.0b","v1.0.1","v1.0.10","v1.0.10beta1","v1.0.10rc1","v1.0.11","v1.0.11beta1","v1.0.11beta2","v1.0.11beta3","v1.0.11rc1","v1.0.12beta1","v1.0.1a","v1.0.1b","v1.0.1c","v1.0.1d","v1.0.1e","v1.0.2","v1.0.2a","v1.0.2b","v1.0.3","v1.0.4","v1.0.4-pre1","v1.0.4-pre2","v1.0.4-pre3","v1.0.4c","v1.0.4d","v1.0.4d2","v1.0.4e","v1.0.4f","v1.0.5","v1.0.5-pre1","v1.0.5a","v1.0.5c","v1.0.5d","v1.0.5h","v1.0.5q","v1.0.5s","v1.0.6","v1.0.6a","v1.0.6d","v1.0.6e","v1.0.6f","v1.0.6g","v1.0.6h","v1.0.6i","v1.0.6j","v1.0.7","v1.0.7beta11","v1.0.7beta12","v1.0.7beta13","v1.0.7beta14","v1.0.7beta15","v1.0.7beta16","v1.0.7beta17","v1.0.7beta18","v1.0.7rc1","v1.0.7rc2","v1.0.8","v1.0.8beta1","v1.0.8beta2","v1.0.8beta3","v1.0.8beta4","v1.0.8rc1","v1.0.9","v1.0.9beta1","v1.0.9beta10","v1.0.9beta2","v1.0.9beta3","v1.0.9beta4","v1.0.9beta5","v1.0.9beta6","v1.0.9beta7","v1.0.9beta8","v1.0.9beta9","v1.0.9rc1","v1.0.9rc2","v1.00","v1.2.0","v1.2.0beta1","v1.2.0beta2","v1.2.0beta3","v1.2.0beta4","v1.2.0beta5","v1.2.0rc1","v1.2.1","v1.2.10beta1","v1.2.10beta2","v1.2.10beta3","v1.2.10beta4","v1.2.10beta5","v1.2.10beta6","v1.2.10beta7","v1.2.10rc1","v1.2.1beta1","v1.2.1beta2","v1.2.1beta3","v1.2.1beta4","v1.2.1rc1","v1.2.1rc2","v1.2.2","v1.2.2beta1","v1.2.2beta2","v1.2.2beta3","v1.2.2beta4","v1.2.2beta5","v1.2.2beta6","v1.2.2rc1","v1.2.3","v1.2.3rc1","v1.2.3rc2","v1.2.3rc3","v1.2.3rc4","v1.2.3rc5","v1.2.3rc6","v1.2.4","v1.2.4beta1","v1.2.4beta2","v1.2.4beta3","v1.2.4rc1","v1.2.5","v1.2.5beta1","v1.2.5beta2","v1.2.5rc1","v1.2.5rc2","v1.2.5rc3","v1.2.6","v1.2.6beta1","v1.2.6beta2","v1.2.6beta3","v1.2.6beta4","v1.2.6rc1","v1.2.6rc2","v1.2.6rc3","v1.2.6rc4","v1.2.6rc5","v1.2.7","v1.2.7beta1","v1.2.7beta2","v1.2.7rc1","v1.2.8","v1.2.8beta1","v1.2.8beta2","v1.2.8beta3","v1.2.8beta4","v1.2.8beta5","v1.2.8rc1","v1.2.8rc2","v1.2.8rc3","v1.2.8rc4","v1.2.8rc5","v1.2.9","v1.2.9beta1","v1.2.9beta10","v1.2.9beta11","v1.2.9beta2","v1.2.9beta3","v1.2.9beta4","v1.2.9beta5","v1.2.9beta6","v1.2.9beta7","v1.2.9beta8","v1.2.9beta9","v1.2.9rc1","v1.4.0beta1","v1.4.0beta10","v1.4.0beta100","v1.4.0beta101","v1.4.0beta102","v1.4.0beta104","v1.4.0beta105","v1.4.0beta106","v1.4.0beta107","v1.4.0beta108","v1.4.0beta109","v1.4.0beta11","v1.4.0beta12","v1.4.0beta13","v1.4.0beta14","v1.4.0beta15","v1.4.0beta16","v1.4.0beta17","v1.4.0beta18","v1.4.0beta19","v1.4.0beta2","v1.4.0beta20","v1.4.0beta21","v1.4.0beta22","v1.4.0beta23","v1.4.0beta24","v1.4.0beta25","v1.4.0beta26","v1.4.0beta27","v1.4.0beta28","v1.4.0beta29","v1.4.0beta3","v1.4.0beta30","v1.4.0beta31","v1.4.0beta32","v1.4.0beta33","v1.4.0beta34","v1.4.0beta35","v1.4.0beta36","v1.4.0beta37","v1.4.0beta38","v1.4.0beta39","v1.4.0beta4","v1.4.0beta40","v1.4.0beta41","v1.4.0beta42","v1.4.0beta43","v1.4.0beta44","v1.4.0beta45","v1.4.0beta46","v1.4.0beta47","v1.4.0beta48","v1.4.0beta49","v1.4.0beta5","v1.4.0beta50","v1.4.0beta51","v1.4.0beta52","v1.4.0beta53","v1.4.0beta54","v1.4.0beta55","v1.4.0beta56","v1.4.0beta57","v1.4.0beta58","v1.4.0beta6","v1.4.0beta60","v1.4.0beta61","v1.4.0beta62","v1.4.0beta63","v1.4.0beta64","v1.4.0beta65","v1.4.0beta66","v1.4.0beta67","v1.4.0beta68","v1.4.0beta69","v1.4.0beta7","v1.4.0beta70","v1.4.0beta71","v1.4.0beta73","v1.4.0beta75","v1.4.0beta76","v1.4.0beta77","v1.4.0beta78","v1.4.0beta79","v1.4.0beta8","v1.4.0beta80","v1.4.0beta81","v1.4.0beta82","v1.4.0beta83","v1.4.0beta84","v1.4.0beta85","v1.4.0beta86","v1.4.0beta87","v1.4.0beta89","v1.4.0beta9","v1.4.0beta90","v1.4.0beta91","v1.4.0beta92","v1.4.0beta93","v1.4.0beta94","v1.4.0beta95","v1.4.0beta96","v1.4.0beta98","v1.4.0beta99","v1.4.0rc03","v1.4.0rc04","v1.4.0rc05","v1.4.0rc06","v1.4.0rc07","v1.4.0rc08","v1.5.0","v1.5.0beta01","v1.5.0beta02","v1.5.0beta03","v1.5.0beta04","v1.5.0beta05","v1.5.0beta06","v1.5.0beta07","v1.5.0beta08","v1.5.0beta09","v1.5.0beta11","v1.5.0beta12","v1.5.0beta13","v1.5.0beta14","v1.5.0beta15","v1.5.0beta16","v1.5.0beta17","v1.5.0beta18","v1.5.0beta19","v1.5.0beta20","v1.5.0beta21","v1.5.0beta22","v1.5.0beta23","v1.5.0beta24","v1.5.0beta25","v1.5.0beta26","v1.5.0beta27","v1.5.0beta28","v1.5.0beta29","v1.5.0beta30","v1.5.0beta31","v1.5.0beta32","v1.5.0beta33","v1.5.0beta34","v1.5.0beta35","v1.5.0beta36","v1.5.0beta37","v1.5.0beta38","v1.5.0beta39","v1.5.0beta40","v1.5.0beta41","v1.5.0beta42","v1.5.0beta43","v1.5.0beta44","v1.5.0beta45","v1.5.0beta46","v1.5.0beta47","v1.5.0beta48","v1.5.0beta49","v1.5.0beta50","v1.5.0beta51","v1.5.0beta52","v1.5.0beta53","v1.5.0beta54","v1.5.0beta55","v1.5.0beta56","v1.5.0beta57","v1.5.0beta58","v1.5.0rc01","v1.5.0rc02","v1.5.0rc03","v1.5.0rc05","v1.5.0rc06","v1.5.1","v1.5.1beta01","v1.5.1beta02","v1.5.1beta03","v1.5.1beta04","v1.5.1beta05","v1.5.1beta06","v1.5.1beta07","v1.5.1beta08","v1.5.1beta09","v1.5.1beta10","v1.5.1beta11","v1.5.1rc01","v1.5.1rc02","v1.5.2","v1.5.2beta01","v1.5.2beta02","v1.5.2beta03","v1.5.2rc01","v1.5.2rc02","v1.5.2rc03","v1.5.3beta01","v1.5.3beta02","v1.5.3beta03","v1.5.3beta05","v1.5.3beta06","v1.5.3beta07","v1.5.3beta08","v1.5.3beta09","v1.5.3beta10","v1.5.3beta11","v1.5.3rc01","v1.5.3rc02","v1.5.4","v1.5.4beta01","v1.5.4beta02","v1.5.4beta03","v1.5.4beta04","v1.5.4beta05","v1.5.4beta06","v1.5.4beta07","v1.5.4beta08","v1.5.4rc01","v1.5.5","v1.5.5beta01","v1.5.5beta02","v1.5.5beta03","v1.5.5beta04","v1.5.5beta05","v1.5.5beta06","v1.5.5beta07","v1.5.5beta08","v1.5.5rc01","v1.5.6","v1.5.6beta01","v1.5.6beta02","v1.5.6beta03","v1.5.6beta04","v1.5.6beta05","v1.5.6beta06","v1.5.6beta07","v1.5.6rc01","v1.5.6rc02","v1.5.6rc03","v1.5.7beta01","v1.5.7beta02","v1.5.7beta03","v1.5.7beta04","v1.6.0","v1.6.0beta01","v1.6.0beta02","v1.6.0beta03","v1.6.0beta04","v1.6.0beta05","v1.6.0beta06","v1.6.0beta07","v1.6.0beta08","v1.6.0beta09","v1.6.0beta10","v1.6.0beta11","v1.6.0beta12","v1.6.0beta13","v1.6.0beta14","v1.6.0beta15","v1.6.0beta16","v1.6.0beta17","v1.6.0beta18","v1.6.0beta19","v1.6.0beta21","v1.6.0beta22","v1.6.0beta23","v1.6.0beta24","v1.6.0beta25","v1.6.0beta26","v1.6.0beta27","v1.6.0beta28","v1.6.0beta29","v1.6.0beta30","v1.6.0beta31","v1.6.0beta32","v1.6.0beta33","v1.6.0beta34","v1.6.0beta35","v1.6.0beta36","v1.6.0beta37","v1.6.0beta38","v1.6.0beta39","v1.6.0beta40","v1.6.0rc01","v1.6.0rc02","v1.6.0rc03","v1.6.0rc04","v1.6.0rc05","v1.6.0rc06","v1.6.0rc07","v1.6.0rc08"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4214.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}