Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2501

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-2501
Last Modified 23 Jul 2012 11:32:40
Published 17 Jul 2011 04:55:01
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2501

Summary

The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources.

Vulnerable Systems

Application

  • Libpng 1.0.0

  • Libpng 1.0.1

  • Libpng 1.0.10

  • Libpng 1.0.11

  • Libpng 1.0.12

  • Libpng 1.0.13

  • Libpng 1.0.14

  • Libpng 1.0.15

  • Libpng 1.0.16

  • Libpng 1.0.17

  • Libpng 1.0.18

  • Libpng 1.0.19

  • Libpng 1.0.2

  • Libpng 1.0.20

  • Libpng 1.0.21

  • Libpng 1.0.22

  • Libpng 1.0.23

  • Libpng 1.0.24

  • Libpng 1.0.25

  • Libpng 1.0.26

  • Libpng 1.0.27

  • Libpng 1.0.28

  • Libpng 1.0.29

  • Libpng 1.0.3

  • Libpng 1.0.30

  • Libpng 1.0.31

  • Libpng 1.0.32

  • Libpng 1.0.33

  • Libpng 1.0.34

  • Libpng 1.0.35

  • Libpng 1.0.37

  • Libpng 1.0.38

  • Libpng 1.0.39

  • Libpng 1.0.40

  • Libpng 1.0.41

  • Libpng 1.0.42

  • Libpng 1.0.43

  • Libpng 1.0.44

  • Libpng 1.0.45

  • Libpng 1.0.46

  • Libpng 1.0.47

  • Libpng 1.0.48

  • Libpng 1.0.5

  • Libpng 1.0.50

  • Libpng 1.0.51

  • Libpng 1.0.52

  • Libpng 1.0.53

  • Libpng 1.0.54

  • Libpng 1.0.6

  • Libpng 1.0.7

  • Libpng 1.0.8

  • Libpng 1.0.9

  • Libpng 1.2.0

  • Libpng 1.2.1

  • Libpng 1.2.10

  • Libpng 1.2.11

  • Libpng 1.2.13

  • Libpng 1.2.14

  • Libpng 1.2.15

  • Libpng 1.2.16

  • Libpng 1.2.17

  • Libpng 1.2.18

  • Libpng 1.2.19

  • Libpng 1.2.2

  • Libpng 1.2.20

  • Libpng 1.2.21

  • Libpng 1.2.22

  • Libpng 1.2.23

  • Libpng 1.2.24

  • Libpng 1.2.25

  • Libpng 1.2.26

  • Libpng 1.2.27

  • Libpng 1.2.28

  • Libpng 1.2.29

  • Libpng 1.2.3

  • Libpng 1.2.30

  • Libpng 1.2.31

  • Libpng 1.2.32

  • Libpng 1.2.33

  • Libpng 1.2.34

  • Libpng 1.2.35

  • Libpng 1.2.36

  • Libpng 1.2.37

  • Libpng 1.2.38

  • Libpng 1.2.39

  • Libpng 1.2.4

  • Libpng 1.2.40

  • Libpng 1.2.41

  • Libpng 1.2.42

  • Libpng 1.2.43

  • Libpng 1.2.44

  • Libpng 1.2.5

  • Libpng 1.2.6

  • Libpng 1.2.7

  • Libpng 1.2.8

  • Libpng 1.2.9

  • Libpng 1.4.0

  • Libpng 1.4.1

  • Libpng 1.4.2

  • Libpng 1.4.3

  • Libpng 1.4.4

  • Libpng 1.4.5

  • Libpng 1.4.6

  • Libpng 1.4.7

  • Libpng 1.5.0

  • Libpng 1.5.1

  • Libpng 1.5.2

  • Libpng 1.5.3


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=717084

MLIST - [oss-security] 20110628 Re: CVE request for libpng regression (CVE-2004-0421)

MLIST - [oss-security] 20110627 CVE request for libpng regression (CVE-2004-0421)

CONFIRM - http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=65e6d5a34f49acdb362a0625a706c6b914e670af

XF - libpng-pngerror-dos(68517)

UBUNTU - USN-1175-1

BID - 48474

REDHAT - RHSA-2011:1105

MANDRIVA - MDVSA-2011:151

DEBIAN - DSA-2287

CONFIRM - http://sourceforge.net/mailarchive/forum.php?thread_name=BANLkTikrnU6FJNQYFvwmt78hwpgKPVRd1Q%40mail.gmail.com&forum_name=png-mng-implement

SLACKWARE - SSA:2011-210-01

SECUNIA - 45492

SECUNIA - 45486

SECUNIA - 45460

SECUNIA - 45415

SECUNIA - 45405

SECUNIA - 45289

SECUNIA - 45046

FEDORA - FEDORA-2011-9336

FEDORA - FEDORA-2011-8868

GENTOO - GLSA-201206-15

SECUNIA - 49660

Related Patches

Novell SUSE 2011:4948 libpng-devel security update for SLE 11 SP1 i586

Novell SUSE 2011:7670 libpng security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:49:38