Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P
Vendors Products
Apple
  • Iphone Os
  • Tvos
  • Safari
  • Itunes
Vmware
  • Workstation
  • Player
Suse
  • Linux Enterprise Server
Canonical
  • Ubuntu Linux
Fedoraproject
  • Fedora
Debian
  • Debian Linux
Libpng
  • Libpng
Opensuse
  • Opensuse

Configuration 1 [-]

OR cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*
cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Configuration 3 [-]

OR cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*

Configuration 6 [-]

OR cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

Configuration 7 [-]

cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
References
Link Resource
http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=90cfcecc09febb8d6c8c1d37ea7bb7cf0f4b00f3#patch20
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html Mailing List Third Party Advisory
http://lists.vmware.com/pipermail/security-announce/2010/000105.html Mailing List Third Party Advisory
http://secunia.com/advisories/40302 Broken Link
http://secunia.com/advisories/40336 Broken Link
http://secunia.com/advisories/40472 Broken Link
http://secunia.com/advisories/40547 Broken Link
http://secunia.com/advisories/41574 Broken Link
http://secunia.com/advisories/42314 Broken Link
http://secunia.com/advisories/42317 Broken Link
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061 Mailing List Patch Third Party Advisory
http://support.apple.com/kb/HT4435 Broken Link
http://support.apple.com/kb/HT4456 Third Party Advisory
http://support.apple.com/kb/HT4457 Third Party Advisory
http://support.apple.com/kb/HT4554 Third Party Advisory
http://support.apple.com/kb/HT4566 Broken Link
http://www.debian.org/security/2010/dsa-2072 Third Party Advisory
http://www.libpng.org/pub/png/libpng.html Product Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:133 Broken Link
http://www.securityfocus.com/bid/41174 Patch Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1024723 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-960-1 Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2010-0014.html Third Party Advisory
http://www.vupen.com/english/advisories/2010/1612 Broken Link
http://www.vupen.com/english/advisories/2010/1637 Broken Link
http://www.vupen.com/english/advisories/2010/1755 Broken Link
http://www.vupen.com/english/advisories/2010/1837 Broken Link
http://www.vupen.com/english/advisories/2010/1846 Broken Link
http://www.vupen.com/english/advisories/2010/1877 Broken Link
http://www.vupen.com/english/advisories/2010/2491 Broken Link
http://www.vupen.com/english/advisories/2010/3045 Broken Link
http://www.vupen.com/english/advisories/2010/3046 Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=608644 Issue Tracking Patch Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/59816 Third Party Advisory VDB Entry
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2010-06-30T18:00:00

Updated: 2017-08-16T14:57:01

Reserved: 2010-06-09T00:00:00

Link: CVE-2010-2249

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2010-06-30T18:30:01.847

Modified: 2023-02-13T04:21:07.020

Link: CVE-2010-2249

JSON object: View

cve-icon Redhat Information

No data.

CWE