CVE-2009-0040 — MEDIUM (6.8)

Q: How severe is CVE-2009-0040?

CVE-2009-0040 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2009-0040?

Check the references section above for vendor advisories and patch information. Affected products include: Libpng Libpng, Apple Iphone Os, Apple Mac Os X, Opensuse Opensuse, Suse Linux Enterprise.

Vulnerability Description

The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit gamma tables.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Libpng	Libpng	< 1.0.43
Apple	Iphone Os	< 3.0
Apple	Mac Os X	< 10.5.8
Opensuse	Opensuse	10.3
Suse	Linux Enterprise	9.0
Suse	Linux Enterprise Desktop	10
Suse	Linux Enterprise Server	10
Debian	Debian Linux	4.0
Fedoraproject	Fedora	9

Related Weaknesses (CWE)

CWE-824

References

ftp://ftp.simplesystems.org/pub/png/src/libpng-1.2.34-ADVISORY.txtBroken LinkVendor Advisory
http://downloads.sourceforge.net/libpng/libpng-1.2.34-ADVISORY.txtProduct
http://lists.apple.com/archives/security-announce/2009/Aug/msg00001.htmlMailing List
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.htmlMailing List
http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlMailing List
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.htmlBroken LinkMailing List
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.htmlMailing List
http://lists.vmware.com/pipermail/security-announce/2009/000062.htmlBroken Link
http://secunia.com/advisories/33970Broken LinkVendor Advisory
http://secunia.com/advisories/33976Broken LinkVendor Advisory
http://secunia.com/advisories/34137Broken Link
http://secunia.com/advisories/34140Broken Link
http://secunia.com/advisories/34143Broken Link

FAQ

What is CVE-2009-0040?

CVE-2009-0040 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application ...

How severe is CVE-2009-0040?

CVE-2009-0040 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-0040?

Check the references section above for vendor advisories and patch information. Affected products include: Libpng Libpng, Apple Iphone Os, Apple Mac Os X, Opensuse Opensuse, Suse Linux Enterprise.