CVE-2008-1382

Severity

75%

Complexity

99%

Confidentiality

106%

libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through 1.4.0beta19 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG file with zero length "unknown" chunks, which trigger an access of uninitialized memory.

libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through 1.4.0beta19 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG file with zero length "unknown" chunks, which trigger an access of uninitialized memory.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

libpng

First reported 16 years ago

2008-04-14 16:05:00

Last updated 6 years ago

2018-10-11 20:32:00

Affected Software

libpng 1.0.12

1.0.12

libpng 1.0.13

1.0.13

libpng 1.0.14

1.0.14

libpng 1.0.15

1.0.15

libpng 1.0.16

1.0.16

libpng 1.0.17

1.0.17

libpng 1.0.18

1.0.18

libpng 1.0.19

1.0.19

libpng 1.0.20

1.0.20

libpng 1.0.21

1.0.21

libpng 1.0.22

1.0.22

libpng 1.0.23

1.0.23

libpng 1.0.24

1.0.24

libpng 1.0.25

1.0.25

libpng 1.0.26

1.0.26

libpng 1.0.27

1.0.27

libpng 1.0.28

1.0.28

libpng 1.0.29

1.0.29

libpng 1.0.30

1.0.30

libpng 1.0.31

1.0.31

libpng 1.0.32

1.0.32

References

http://libpng.sourceforge.net/Advisory-1.2.26.txt

APPLE-SA-2008-09-15

APPLE-SA-2009-05-12

SUSE-SR:2008:010

29678

29792

Vendor Advisory

29957

29992

30009

30157

30174

30402

30486

31882

33137

34152

34388

35074

35258

35302

35386

GLSA-200804-15

GLSA-200805-10

GLSA-200812-15

SSA:2008-119-01

259989

1020521

http://support.apple.com/kb/HT3549

http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0151

DSA-1750

MDVSA-2008:156

http://www.ocert.org/advisories/ocert-2008-003.html

44364

RHSA-2009:0333

20080414 [oCERT-2008-003] libpng zero-length chunks incorrect handling

20080429 rPSA-2008-0151-1 libpng

20090529 VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues

28770

1019840

TA08-260A

US Government Resource

TA09-133A

US Government Resource

http://www.vmware.com/security/advisories/VMSA-2009-0007.html

ADV-2008-1225

ADV-2008-2584

ADV-2009-1297

ADV-2009-1451

ADV-2009-1462

ADV-2009-1560

libpng-zero-length-code-execution(41800)

oval:org.mitre.oval:def:10326

oval:org.mitre.oval:def:6275

FEDORA-2008-4847

FEDORA-2008-4910

FEDORA-2008-4947

FEDORA-2008-3683

FEDORA-2008-3979

FEDORA-2008-3937

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.