CVE-2015-8540 — HIGH (8.8) — White Hats Nepal

Vulnerability Description

Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.26 allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.

CVSS Score

8.8

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redhat	Enterprise Linux Desktop Supplementary	5.0
Redhat	Enterprise Linux Hpc Node	6.0
Redhat	Enterprise Linux Server Supplementary	5.0
Redhat	Enterprise Linux Workstation Supplementary	6.0
Libpng	Libpng	1.2.0
Fedoraproject	Fedora	23
Debian	Debian Linux	6.0

Related Weaknesses (CWE)

CWE-189

References

FAQ

What is CVE-2015-8540?

CVE-2015-8540 is a vulnerability with a CVSS score of 8.8 (HIGH). Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.2...

How severe is CVE-2015-8540?

CVE-2015-8540 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-8540?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Enterprise Linux Desktop Supplementary, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Server Supplementary, Redhat Enterprise Linux Workstation Supplementary, Libpng Libpng.