Definition
New Search
The PNG reference library (aka libpng) before 1.0.43 and 1.2.x before 1.2.35 as used in pngcrush and other applications allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function (2) pCAL chunk handling or (3) setup of 16-bit gamma tables.
oval:org.mitre.oval:def:10316
The PNG reference library (aka libpng) before 1.0.43 and 1.2.x before 1.2.35 as used in pngcrush and other applications allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function (2) pCAL chunk handling or (3) setup of 16-bit gamma tables.
Family:
unix
Status:
ACCEPTED
Platform(s):
- Red Hat Enterprise Linux 4
- CentOS Linux 3
- CentOS Linux 4
- Red Hat Enterprise Linux 5
- Oracle Linux 5
- Red Hat Enterprise Linux 3
- Oracle Linux 4
- CentOS Linux 5
Class:
vulnerability
Reference(s):
- CVE-2009-0040
Product(s):