|
libpng Integer Overflow and Buffer Overflow Vulnerabilities
|
|
Secunia Advisory:
|
SA12902
|
|
|
Release Date:
|
2004-10-22
|
|
Last Update:
|
2004-10-25
|
|
Popularity:
|
10,147 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | libpng 1.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2004-0955
|
|
Description:
Two vulnerabilities have been reported in libpng, which potentially can be exploited by malicious people to compromise a user's system.
A boundary error in the "png_handle_tRNS()" function and an integer overflow in the "png_read_png()" function can be exploited to cause buffer overflows by tricking a user into viewing a specially crafted PNG image with an application linked to the vulnerable library.
Successful exploitation may allow execution of arbitrary code.
The vulnerabilities in this advisory are related to:
SA12219
Solution:
Update to version 1.0.16 or 1.2.6.
http://www.libpng.org/pub/png/libpng.html
Provided and/or discovered by:
Reported in a Debian advisory.
Changelog:
2004-10-25: Updated "Solution" section.
Original Advisory:
http://www.debian.org/security/2004/dsa-570
Other References:
SA12219:
http://secunia.com/advisories/12219/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
