Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0040

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2009-0040
Last Modified 14 May 2013 10:53:14
Published 22 Feb 2009 05:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0040

Summary

The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit gamma tables.

Vulnerable Systems

Application

  • Libpng 0.89c

  • Libpng 0.95

  • Libpng 1.0.0

  • Libpng 1.0.1

  • Libpng 1.0.10

  • Libpng 1.0.11

  • Libpng 1.0.12

  • Libpng 1.0.13

  • Libpng 1.0.14

  • Libpng 1.0.15

  • Libpng 1.0.16

  • Libpng 1.0.17

  • Libpng 1.0.18

  • Libpng 1.0.19

  • Libpng 1.0.2

  • Libpng 1.0.20

  • Libpng 1.0.21

  • Libpng 1.0.22

  • Libpng 1.0.23

  • Libpng 1.0.24

  • Libpng 1.0.25

  • Libpng 1.0.26

  • Libpng 1.0.27

  • Libpng 1.0.28

  • Libpng 1.0.29

  • Libpng 1.0.3

  • Libpng 1.0.30

  • Libpng 1.0.31

  • Libpng 1.0.32

  • Libpng 1.0.33

  • Libpng 1.0.34

  • Libpng 1.0.35

  • Libpng 1.0.37

  • Libpng 1.0.38

  • Libpng 1.0.39

  • Libpng 1.0.40

  • Libpng 1.0.41

  • Libpng 1.0.42

  • Libpng 1.0.5

  • Libpng 1.0.6

  • Libpng 1.0.7

  • Libpng 1.0.8

  • Libpng 1.0.9

  • Libpng 1.2.0

  • Libpng 1.2.1

  • Libpng 1.2.10

  • Libpng 1.2.11

  • Libpng 1.2.13

  • Libpng 1.2.14

  • Libpng 1.2.15

  • Libpng 1.2.16

  • Libpng 1.2.17

  • Libpng 1.2.18

  • Libpng 1.2.19

  • Libpng 1.2.2

  • Libpng 1.2.20

  • Libpng 1.2.21

  • Libpng 1.2.22

  • Libpng 1.2.23

  • Libpng 1.2.24

  • Libpng 1.2.25

  • Libpng 1.2.26

  • Libpng 1.2.27

  • Libpng 1.2.28

  • Libpng 1.2.29

  • Libpng 1.2.3

  • Libpng 1.2.30

  • Libpng 1.2.31

  • Libpng 1.2.32

  • Libpng 1.2.33

  • Libpng 1.2.34

  • Libpng 1.2.4

  • Libpng 1.2.5

  • Libpng 1.2.6

  • Libpng 1.2.7

  • Libpng 1.2.8

  • Libpng 1.2.9


References

CERT - TA09-218A

CERT - TA09-133A

CERT-VN - VU#649212

FEDORA - FEDORA-2009-2884

FEDORA - FEDORA-2009-2882

FEDORA - FEDORA-2009-1976

FEDORA - FEDORA-2009-2045

XF - libpng-pointer-arrays-code-execution(48819)

VUPEN - ADV-2009-2172

VUPEN - ADV-2009-1621

VUPEN - ADV-2009-1560

VUPEN - ADV-2009-1522

VUPEN - ADV-2009-1462

VUPEN - ADV-2009-1451

VUPEN - ADV-2009-1297

VUPEN - ADV-2009-0632

VUPEN - ADV-2009-0473

VUPEN - ADV-2009-0469

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0007.html

BID - 33990

BID - 33827

BUGTRAQ - 20090821 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server

BUGTRAQ - 20090529 VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues

BUGTRAQ - 20090312 rPSA-2009-0046-1 libpng

REDHAT - RHSA-2009:0340

REDHAT - RHSA-2009:0333

REDHAT - RHSA-2009:0325

REDHAT - RHSA-2009:0315

MANDRIVA - MDVSA-2009:083

MANDRIVA - MDVSA-2009:075

MANDRIVA - MDVSA-2009:051

DEBIAN - DSA-1830

DEBIAN - DSA-1750

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0046

CONFIRM - http://support.avaya.com/japple/css/japple?temp.documentID=366362&temp.productID=154235&temp.releaseID=361845&temp.bucketID=126655&PAGE=Document

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2009-069.htm

CONFIRM - http://support.apple.com/kb/HT3757

CONFIRM - http://support.apple.com/kb/HT3639

CONFIRM - http://support.apple.com/kb/HT3613

CONFIRM - http://support.apple.com/kb/HT3549

SUNALERT - 1020521

SUNALERT - 259989

CONFIRM - http://sourceforge.net/project/shownotes.php?group_id=1689&release_id=662441

MLIST - [png-mng-implement] 20090219 libpng-1.2.35 and libpng-1.0.43 fix security vulnerability

SLACKWARE - SSA:2009-083-03

SLACKWARE - SSA:2009-083-02

GENTOO - GLSA-200903-28

SECUNIA - 36096

SECUNIA - 35386

SECUNIA - 35379

SECUNIA - 35302

SECUNIA - 35258

SECUNIA - 35074

SECUNIA - 34464

SECUNIA - 34462

SECUNIA - 34388

SECUNIA - 34324

SECUNIA - 34320

SECUNIA - 34272

SECUNIA - 34265

SECUNIA - 34210

SECUNIA - 34152

SECUNIA - 34145

SECUNIA - 34143

SECUNIA - 34140

SECUNIA - 34137

SECUNIA - 33976

SECUNIA - 33970

MLIST - [security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server

SUSE - SUSE-SA:2009:023

SUSE - SUSE-SA:2009:012

SUSE - SUSE-SR:2009:005

APPLE - APPLE-SA-2009-05-12

APPLE - APPLE-SA-2009-06-17-1

APPLE - APPLE-SA-2009-06-08-1

APPLE - APPLE-SA-2009-08-05-1

CONFIRM - http://downloads.sourceforge.net/libpng/libpng-1.2.34-ADVISORY.txt

CONFIRM - ftp://ftp.simplesystems.org/pub/png/src/libpng-1.2.34-ADVISORY.txt

GENTOO - GLSA-201209-25

Related Patches

Apple 2009-05-12 Mac OS X 10.5.7 Combo Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Update

Apple 2009-05-12 Mac OS X 10.5.7 Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Combo Update

Apple 2009-08-12 Security Update 2009-003 2009-004 Server (Tiger PPC)

Apple 2009-08-12 Security Update 2009-003 2009-004 (Tiger PPC)

Apple 2009-08-31 Mac OS X Server 10.5.8 v1.1 Update (See Note)

Apple 2009-08-31 Mac OS X Server 10.5.8 v1.1 Combo Update (See Note)


Last Updated: 27 May 2016 11:02:24