CVE-2008-3964

Severity

43%

Complexity

86%

Confidentiality

48%

Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the png_push_read_zTXt function in pngread.c, and possibly related to (2) pngtest.c.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P).

Overview

Type

libpng

First reported 16 years ago

2008-09-11 01:13:00

Last updated 7 years ago

2017-08-08 01:32:00

Affected Software

libpng 1.2.2

1.2.2

libpng 1.2.3

1.2.3

libpng 1.2.4

1.2.4

libpng 1.2.5

1.2.5

libpng 1.2.6

1.2.6

libpng 1.2.7

1.2.7

libpng 1.2.8

1.2.8

libpng 1.2.9

1.2.9

libpng 1.2.20

1.2.20

libpng 1.2.21

1.2.21

libpng 1.2.22

1.2.22

libpng 1.2.23

1.2.23

libpng 1.2.24

1.2.24

libpng 1.2.25

1.2.25

libpng 1.2.26

1.2.26

References

31781

33137

35302

35386

GLSA-200812-15

[png-mng-implement] 20080918 libpng-1.0.40 and libpng-1.2.32 available

http://sourceforge.net/project/shownotes.php?group_id=5624&release_id=624517

http://sourceforge.net/project/shownotes.php?release_id=624518

Patch

http://sourceforge.net/tracker/index.php?func=detail&aid=2095669&group_id=5624&atid=105624

Exploit

259989

1020521

http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm

VU#889484

US Government Resource

MDVSA-2009:051

[oss-security] 20080909 CVE request (libpng)

[oss-security] 20080909 Re: CVE request (libpng)

31049

ADV-2008-2512

ADV-2009-1462

ADV-2009-1560

libpng-pngpushreadztxt-dos(44928)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.