[VU:649212] libpng fails to properly initialize element pointers
Severity
Medium
CVEs
1
Overview
Libpng contains a vulnerability in the way element pointers are handled.
Impact
This vulnerability could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service.
Solution
Upgrade
The PNG Development Group has issued an upgrade to address this issue. See libpng version 1.2.35 for more information.
Acknowledgements
This issue was reported by the
PNG Development Group
in
libpng version 1.2.35
- ID
- VU:649212
- Severity
- medium
- Severity from
- CVE-2009-0040
- URL
- https://kb.cert.org/vuls/id/649212
- Published
-
2009-03-02T20:16:42
(15 years ago) - Modified
-
2009-03-06T15:39:09
(15 years ago) - Rights
- Copyright 2009, CERT Coordination Center (CERT/CC)
- Other Advisories
-
- ELSA-2009-0315
- ELSA-2009-0333
- FEDORA-2009-1976
- FEDORA-2009-2045
- FEDORA-2009-2112
- FEDORA-2009-2128
- FEDORA-2009-2131
- FEDORA-2009-2882
- FEDORA-2009-2884
- FEDORA-2009-6531
- FEDORA-2009-6603
- FREEBSD:EA2411A4-08E8-11DE-B88A-0022157515B2
- GLSA-200903-28
- GLSA-201209-25
- GLSA-201412-08
- SSA:2009-051-01
- USN-728-1
- USN-730-1
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |