SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   libpng Vendors:   libpng.sourceforge.net
libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
SecurityTracker Alert ID:  1010854
SecurityTracker URL:  http://securitytracker.com/id/1010854
CVE Reference:   CVE-2004-0597, CVE-2004-0598, CVE-2004-0599   (Links to External Site)
Date:  Aug 4 2004
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.2.5 and 1.0.15
Description:   Several buffer overflow vulnerabilities were reported in libpng. A remote user may be able to execute arbitrary code on the target system.

Red Hat reported that Chris Evans discovered several buffer overflows in libpng during a code audit.

A remote user can create a specially crafted PNG file that, when opened by a target user with an application that uses libpng, will execute arbitrary code on the target user's system [CVE: CVE-2004-0597].

A NULL pointer dereference vulnerability [CVE: CVE-2004-0598] and several integer overflow issues [CVE: CVE-2004-0599] were also reported to be able to cause an affected application to crash when opening a malicious file.

Impact:   A remote user may be able to cause an affected application to crash or execute arbitrary code. The specific impact depends on the application using libpng.
Solution:   The vendor has released three patches for libpng 1.2.5 and 1.0.15. More information is available at:

http://www.libpng.org/pub/png/libpng.html

Vendor URL:  www.libpng.org/pub/png/libpng.html (Links to External Site)
Cause:   Boundary error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Aug 4 2004 (Red Hat Issues Fix for RHEL) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Red Hat has released a fix for Red Hat Enterprise Linux 2.1 and 3.
Aug 4 2004 (SuSE Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
SuSE has released a fix.
Aug 4 2004 (Fedora Issues Fix for FC1) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Red Hat has released a fix for Fedora Core 1.
Aug 5 2004 (Fedora Issues Fix for FC2) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Fedora has released a fix for Fedora Core 2.
Aug 5 2004 (Fedora Issues Fix for libpng10) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Fedora has released a fix for libpng10 on Fedora Core 2.
Aug 5 2004 (Mandrake Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Mandrake has released a fix.
Aug 5 2004 (Debian Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Debian has released a fix.
Aug 5 2004 (Gentoo Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Gentoo has released a fix.
Aug 5 2004 (Trustix Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Trustix has released a fix.
Aug 6 2004 (HP Issues Fix for Mozilla for Tru64) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
HP has issued a fix for Mozilla for HP Tru64 UNIX, which is affected by the libpng flaw.
Aug 6 2004 (Conectiva Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Conectiva has released a fix.
Aug 6 2004 (Mozilla Issues Fix for Mozilla) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
A fix is available for Mozilla, which is affected by the libpng vulnerability.
Aug 6 2004 (Mozilla Issues Fix for Firefox) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
A fix is available for Firefox, which is affected by the libpng vulnerability.
Aug 6 2004 (Mozilla Issues Fix for Thunderbird) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
A fix is available for Thunderbird, which is affected by the libpng vulnerability.
Aug 9 2004 (GraphicsMagick Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
GraphicsMagick is affected by the libpng vulnerability. A fix is available.
Aug 9 2004 (ImageMagick Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
ImageMagick is affected by the libpng vulnerability. A fix is available.
Aug 9 2004 (MediaWiki Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
MediaWiki is affected by the libpng vulnerability. A fix is available.
Aug 10 2004 (Apple Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Apple has released a fix for Mac OS X in 10.3.5.
Aug 10 2004 (Apple Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Apple has released a fix for Mac OS X 10.2.8 and 10.3.4.
Aug 11 2004 (Slackware Issues Fix for imagemagick) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Slackware has released a fix for imagemagick.
Aug 12 2004 (Turbolinux Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
Turbolinux has issued a fix.
Oct 13 2004 (SCO Issues Fix) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
SCO issued a fix for UnixWare.
Feb 8 2005 (Microsoft Issues Fix for Windows Messenger Service) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
This is a follow-up message.
Feb 8 2005 (Microsoft Issues Fix for MSN Messenger) libpng Buffer Overflows May Let Remote Users Crash the Application or Execute Arbitrary Code
This is a follow-up message.



 Source Message Contents

Subject:  CVE-2004-0597 - CVE-2004-0599


Red Hat reported that Chris Evans discovered several buffer overflows in libpng during a 
code audit.

A remote user can create a specially crafted PNG file that, when opened by a target user 
with an application that uses libpng, will execute arbitrary code on the target user's system.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name 
CAN-2004-0597 to these issues.

A NULL pointer dereference vulnerability (CAN-2004-0598) and several integer overflow 
issues (CAN-2004-0599) were also reported to be able to cause an affected application to 
crash when opening a malicious file.

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC