CAN-2004-0598 - Secunia Advisories - Vulnerability Information

CVE Reference: CAN-2004-0598
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CAN-2004-0598

Description: The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/16895 TRUSTIX http://www.trustix.net/errata/2004/0040/ SUSE http://www.novell.com/linux/security/advisories/2004_23_libpng.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-66-200663-1 SCO http://marc.theaimsgroup.com/?l=bugtraq&m=109761239318458&w=2 SAID Secunia Advisory: SA22957 Secunia Advisory: SA22958 REDHAT http://www.redhat.com/support/errata/RHSA-2004-402.html http://www.redhat.com/support/errata/RHSA-2004-429.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2572 MISC http://scary.beasts.org/security/CESA-2004-001.txt MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:213 http://www.mandriva.com/security/advisories?name=MDKSA-2006:212 MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2004:079 HP http://marc.theaimsgroup.com/?l=bugtraq&m=109181639602978&w=2 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml http://www.gentoo.org/security/en/glsa/glsa-200408-03.xml FEDORA DEBIAN http://www.debian.org/security/2004/dsa-536 CONFIRM http://www.mozilla.org/projects/security/known-vulnerabilities.html CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856 CERT-VN 236656 CERT http://www.us-cert.gov/cas/techalerts/TA04-217A.html BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=109163866717909&w=2 BID 10857 APPLE http://lists.apple.com/mhonarc/security-announce/msg00056.html

Return to the previous page.