National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-2042)

National Cyber-Alert System

Vulnerability Summary for CVE-2009-2042

Original release date:06/12/2009

Last revised:06/24/2009

Source: US-CERT/NIST

Overview

libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:N/A:N) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 8.6

CVSS Version 2 Metrics:

Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism

Access Complexity: Medium

Authentication: Not required to exploit

Impact Type:Allows unauthorized disclosure of information

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: VUPEN

Name: ADV-2009-1510

Type: Advisory; Patch Information

Hyperlink:http://www.vupen.com/english/advisories/2009/1510

External Source: BID

Name: 35233

Type: Patch Information

Hyperlink:http://www.securityfocus.com/bid/35233

External Source: CONFIRM

Name: http://www.libpng.org/pub/png/libpng.html

Type: Advisory; Patch Information

Hyperlink:http://www.libpng.org/pub/png/libpng.html

External Source: FEDORA

Name: FEDORA-2009-6400

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html

External Source: FEDORA

Name: FEDORA-2009-5977

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html

External Source: XF

Name: libpng-interlaced-image-info-disclosure(50966)

Hyperlink:http://xforce.iss.net/xforce/xfdb/50966

External Source: SLACKWARE

Name: SSA:2009-170-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809

External Source: GENTOO

Name: GLSA-200906-01

Hyperlink:http://security.gentoo.org/glsa/glsa-200906-01.xml

External Source: SECUNIA

Name: 35594

Hyperlink:http://secunia.com/advisories/35594

External Source: SECUNIA

Name: 35524

Hyperlink:http://secunia.com/advisories/35524

External Source: SECUNIA

Name: 35470

Hyperlink:http://secunia.com/advisories/35470

External Source: SECUNIA

Name: 35346

Type: Advisory

Hyperlink:http://secunia.com/advisories/35346

Vulnerable software and versions

Configuration 1

* cpe:/a:libpng:libpng:0.89c

* cpe:/a:libpng:libpng:0.95

* cpe:/a:libpng:libpng:1.0.0

* cpe:/a:libpng:libpng:1.0.1

* cpe:/a:libpng:libpng:1.0.10

* cpe:/a:libpng:libpng:1.0.10:beta1

* cpe:/a:libpng:libpng:1.0.10:rc1

* cpe:/a:libpng:libpng:1.0.11

* cpe:/a:libpng:libpng:1.0.11:beta1

* cpe:/a:libpng:libpng:1.0.12

* cpe:/a:libpng:libpng:1.0.15:rc1

* cpe:/a:libpng:libpng:1.0.12:rc1

* cpe:/a:libpng:libpng:1.0.12:beta1

* cpe:/a:libpng:libpng:1.0.15

* cpe:/a:libpng:libpng:1.0.11:rc1

* cpe:/a:libpng:libpng:1.0.11:beta3

* cpe:/a:libpng:libpng:1.0.13

* cpe:/a:libpng:libpng:1.0.11:beta2

* cpe:/a:libpng:libpng:1.0.14

* cpe:/a:libpng:libpng:1.0.19:rc2

* cpe:/a:libpng:libpng:1.0.17:rc1

* cpe:/a:libpng:libpng:1.0.19:rc3

* cpe:/a:libpng:libpng:1.0.15:rc3

* cpe:/a:libpng:libpng:1.0.19:rc1

* cpe:/a:libpng:libpng:1.0.15:rc2

* cpe:/a:libpng:libpng:1.0.16

* cpe:/a:libpng:libpng:1.0.19

* cpe:/a:libpng:libpng:1.0.17

* cpe:/a:libpng:libpng:1.0.18

* cpe:/a:libpng:libpng:1.0.23

* cpe:/a:libpng:libpng:1.0.21

* cpe:/a:libpng:libpng:1.0.22

* cpe:/a:libpng:libpng:1.0.2

* cpe:/a:libpng:libpng:1.0.22:rc1

* cpe:/a:libpng:libpng:1.0.23:rc1

* cpe:/a:libpng:libpng:1.0.21:rc1

* cpe:/a:libpng:libpng:1.0.20

* cpe:/a:libpng:libpng:1.0.21:rc2

* cpe:/a:libpng:libpng:1.0.19:rc5

* cpe:/a:libpng:libpng:1.2.19

* cpe:/a:libpng:libpng:1.2.1:beta4

* cpe:/a:libpng:libpng:1.2.18

* cpe:/a:libpng:libpng:1.2.1:beta3

* cpe:/a:libpng:libpng:1.2.1:beta2

* cpe:/a:libpng:libpng:1.2.1:beta1

* cpe:/a:libpng:libpng:1.2.15

* cpe:/a:libpng:libpng:1.2.1:rc2

* cpe:/a:libpng:libpng:1.2.14

* cpe:/a:libpng:libpng:1.2.1:rc1

* cpe:/a:libpng:libpng:1.2.17

* cpe:/a:libpng:libpng:1.2.16

* cpe:/a:libpng:libpng:1.2.1

* cpe:/a:libpng:libpng:1.2.19:beta17

* cpe:/a:libpng:libpng:1.2.0

* cpe:/a:libpng:libpng:1.2.19:beta18

* cpe:/a:libpng:libpng:1.2.10

* cpe:/a:libpng:libpng:1.2.11

* cpe:/a:libpng:libpng:1.2.13

* cpe:/a:libpng:libpng:1.2.19:beta1

* cpe:/a:libpng:libpng:1.2.0:beta1

* cpe:/a:libpng:libpng:1.2.0:beta5

* cpe:/a:libpng:libpng:1.2.19:beta10

* cpe:/a:libpng:libpng:1.2.0:beta4

* cpe:/a:libpng:libpng:1.2.0:beta3

* cpe:/a:libpng:libpng:1.2.19:beta12

* cpe:/a:libpng:libpng:1.2.0:beta2

* cpe:/a:libpng:libpng:1.2.19:beta11

* cpe:/a:libpng:libpng:1.2.10:beta3

* cpe:/a:libpng:libpng:1.2.19:beta14

* cpe:/a:libpng:libpng:1.2.10:beta2

* cpe:/a:libpng:libpng:1.2.19:beta13

* cpe:/a:libpng:libpng:1.2.10:beta1

* cpe:/a:libpng:libpng:1.2.19:beta16

* cpe:/a:libpng:libpng:1.2.0:rc1

* cpe:/a:libpng:libpng:1.2.19:beta15

* cpe:/a:libpng:libpng:1.0.8:beta4

* cpe:/a:libpng:libpng:1.0.9:rc1

* cpe:/a:libpng:libpng:1.2.16:beta1

* cpe:/a:libpng:libpng:1.0.8:beta2

* cpe:/a:libpng:libpng:1.2.16:rc1

* cpe:/a:libpng:libpng:1.0.8:beta3

* cpe:/a:libpng:libpng:1.2.16:beta2

* cpe:/a:libpng:libpng:1.0.9:beta2

* cpe:/a:libpng:libpng:1.2.17:beta1

* cpe:/a:libpng:libpng:1.0.9:beta3

* cpe:/a:libpng:libpng:1.2.17:beta2

* cpe:/a:libpng:libpng:1.0.9:rc2

* cpe:/a:libpng:libpng:1.2.17:rc1

* cpe:/a:libpng:libpng:1.0.9:beta1

* cpe:/a:libpng:libpng:1.2.17:rc2

* cpe:/a:libpng:libpng:1.0.9:beta6

* cpe:/a:libpng:libpng:1.2.17:rc3

* cpe:/a:libpng:libpng:1.0.9:beta7

* cpe:/a:libpng:libpng:1.2.17:rc4

* cpe:/a:libpng:libpng:1.0.9:beta4

* cpe:/a:libpng:libpng:1.0.9:beta5

* cpe:/a:libpng:libpng:1.0.9:beta10

* cpe:/a:libpng:libpng:1.0.9:beta8

* cpe:/a:libpng:libpng:1.0.9:beta9

* cpe:/a:libpng:libpng:1.2.14:beta1

* cpe:/a:libpng:libpng:1.2.14:rc1

* cpe:/a:libpng:libpng:1.2.13:rc2

* cpe:/a:libpng:libpng:1.2.13:rc1

* cpe:/a:libpng:libpng:1.0.7:rc2

* cpe:/a:libpng:libpng:1.2.15:beta3

* cpe:/a:libpng:libpng:1.0.7:rc1

* cpe:/a:libpng:libpng:1.2.15:beta2

* cpe:/a:libpng:libpng:1.2.15:beta1

* cpe:/a:libpng:libpng:1.2.14:beta2

* cpe:/a:libpng:libpng:1.2.15:rc1

* cpe:/a:libpng:libpng:1.2.15:beta6

* cpe:/a:libpng:libpng:1.2.15:beta5

* cpe:/a:libpng:libpng:1.2.15:beta4

* cpe:/a:libpng:libpng:1.0.7:beta18

* cpe:/a:libpng:libpng:1.2.15:rc5

* cpe:/a:libpng:libpng:1.0.7:beta17

* cpe:/a:libpng:libpng:1.2.15:rc4

* cpe:/a:libpng:libpng:1.0.8:beta1

* cpe:/a:libpng:libpng:1.2.15:rc3

* cpe:/a:libpng:libpng:1.0.8:rc1

* cpe:/a:libpng:libpng:1.2.15:rc2

* cpe:/a:libpng:libpng:1.2.10:beta6

* cpe:/a:libpng:libpng:1.2.10:beta7

* cpe:/a:libpng:libpng:1.2.10:beta4

* cpe:/a:libpng:libpng:1.2.10:beta5

* cpe:/a:libpng:libpng:1.2.10:rc3

* cpe:/a:libpng:libpng:1.2.11:beta1

* cpe:/a:libpng:libpng:1.2.10:rc1

* cpe:/a:libpng:libpng:1.2.10:rc2

* cpe:/a:libpng:libpng:1.2.11:beta4

* cpe:/a:libpng:libpng:1.2.11:rc1

* cpe:/a:libpng:libpng:1.2.11:beta2

* cpe:/a:libpng:libpng:1.2.11:beta3

* cpe:/a:libpng:libpng:1.2.11:rc5

* cpe:/a:libpng:libpng:1.2.13:beta1

* cpe:/a:libpng:libpng:1.2.11:rc2

* cpe:/a:libpng:libpng:1.2.11:rc3

* cpe:/a:libpng:libpng:1.0.9

* cpe:/a:libpng:libpng:1.0.8

* cpe:/a:libpng:libpng:1.2.23:beta02-1.2.22

* cpe:/a:libpng:libpng:1.2.23:beta01-1.2.22

* cpe:/a:libpng:libpng:1.2.23:beta04-1.2.22

* cpe:/a:libpng:libpng:1.2.23:beta03-1.2.22

* cpe:/a:libpng:libpng:1.2.23:beta03

* cpe:/a:libpng:libpng:1.2.23:beta02

* cpe:/a:libpng:libpng:1.2.23:beta05

* cpe:/a:libpng:libpng:1.2.23:beta04

* cpe:/a:libpng:libpng:1.2.24:beta03-1.2.23

* cpe:/a:libpng:libpng:1.2.24:beta02-1.2.23

* cpe:/a:libpng:libpng:1.2.24:beta01

* cpe:/a:libpng:libpng:1.2.24:rc01-1.2.23

* cpe:/a:libpng:libpng:1.2.23:rc01-1.2.22

* cpe:/a:libpng:libpng:1.2.23:beta05-1.2.22

* cpe:/a:libpng:libpng:1.2.24:beta01-1.2.23

* cpe:/a:libpng:libpng:1.2.23:rc01

* cpe:/a:libpng:libpng:1.2.21:rc2

* cpe:/a:libpng:libpng:1.2.21:rc3

* cpe:/a:libpng:libpng:1.2.22:beta1

* cpe:/a:libpng:libpng:1.2.22:beta2

* cpe:/a:libpng:libpng:1.2.20:rc6

* cpe:/a:libpng:libpng:1.2.21:beta1

* cpe:/a:libpng:libpng:1.2.21:beta2

* cpe:/a:libpng:libpng:1.2.21:rc1

* cpe:/a:libpng:libpng:1.2.22:beta4-1.2.21

* cpe:/a:libpng:libpng:1.2.22:rc1-1.2.21

* cpe:/a:libpng:libpng:1.2.22:rc1

* cpe:/a:libpng:libpng:1.2.23:beta01

* cpe:/a:libpng:libpng:1.2.22:beta3

* cpe:/a:libpng:libpng:1.2.22:beta4

* cpe:/a:libpng:libpng:1.2.22:beta2-1.2.21

* cpe:/a:libpng:libpng:1.2.22:beta3-1.2.21

* cpe:/a:libpng:libpng:1.2.20:beta01

* cpe:/a:libpng:libpng:1.2.23

* cpe:/a:libpng:libpng:1.2.22

* cpe:/a:libpng:libpng:1.2.19:beta33

* cpe:/a:libpng:libpng:1.2.20:rc5

* cpe:/a:libpng:libpng:1.2.20:rc4

* cpe:/a:libpng:libpng:1.2.20:rc3

* cpe:/a:libpng:libpng:1.2.20:rc2

* cpe:/a:libpng:libpng:1.2.20:rc1

* cpe:/a:libpng:libpng:1.2.25

* cpe:/a:libpng:libpng:1.2.20:beta04

* cpe:/a:libpng:libpng:1.2.24

* cpe:/a:libpng:libpng:1.2.20:beta03

* cpe:/a:libpng:libpng:1.2.20:beta02

* cpe:/a:libpng:libpng:1.2.26

* cpe:/a:libpng:libpng:1.2.19:beta23

* cpe:/a:libpng:libpng:1.2.19:beta24

* cpe:/a:libpng:libpng:1.2.2

* cpe:/a:libpng:libpng:1.2.19:beta21

* cpe:/a:libpng:libpng:1.2.19:beta22

* cpe:/a:libpng:libpng:1.2.19:beta19

* cpe:/a:libpng:libpng:1.2.19:beta20

* cpe:/a:libpng:libpng:1.2.19:beta31

* cpe:/a:libpng:libpng:1.2.19:beta32

* cpe:/a:libpng:libpng:1.2.19:beta29

* cpe:/a:libpng:libpng:1.2.19:beta30

* cpe:/a:libpng:libpng:1.2.19:beta27

* cpe:/a:libpng:libpng:1.2.19:beta28

* cpe:/a:libpng:libpng:1.2.19:beta25

* cpe:/a:libpng:libpng:1.2.19:beta26

* cpe:/a:libpng:libpng:1.2.19:beta2

* cpe:/a:libpng:libpng:1.2.19:beta4

* cpe:/a:libpng:libpng:1.2.19:beta3

* cpe:/a:libpng:libpng:1.2.19:beta6

* cpe:/a:libpng:libpng:1.2.19:beta5

* cpe:/a:libpng:libpng:1.2.19:beta8

* cpe:/a:libpng:libpng:1.2.19:beta7

* cpe:/a:libpng:libpng:1.2.19:beta9

* cpe:/a:libpng:libpng:1.2.19:rc1

* cpe:/a:libpng:libpng:1.2.19:rc2

* cpe:/a:libpng:libpng:1.2.19:rc3

* cpe:/a:libpng:libpng:1.2.19:rc4

* cpe:/a:libpng:libpng:1.2.19:rc5

* cpe:/a:libpng:libpng:1.2.19:rc6

* cpe:/a:libpng:libpng:1.2.21

* cpe:/a:libpng:libpng:1.2.20

* cpe:/a:libpng:libpng:1.2.2:rc1

* cpe:/a:libpng:libpng:1.2.2:beta1

* cpe:/a:libpng:libpng:1.2.2:beta2

* cpe:/a:libpng:libpng:1.2.2:beta5

* cpe:/a:libpng:libpng:1.2.2:beta6

* cpe:/a:libpng:libpng:1.2.2:beta3

* cpe:/a:libpng:libpng:1.2.2:beta4

* cpe:/a:libpng:libpng:1.2.26:beta01

* cpe:/a:libpng:libpng:1.2.25:rc02

* cpe:/a:libpng:libpng:1.2.25:rc01

* cpe:/a:libpng:libpng:1.2.25:beta06

* cpe:/a:libpng:libpng:1.2.26:beta04

* cpe:/a:libpng:libpng:1.2.26:beta03

* cpe:/a:libpng:libpng:1.2.26:beta02

* cpe:/a:libpng:libpng:1.2.25:beta01

* cpe:/a:libpng:libpng:1.2.24:rc01

* cpe:/a:libpng:libpng:1.2.24:beta03

* cpe:/a:libpng:libpng:1.2.24:beta02

* cpe:/a:libpng:libpng:1.2.25:beta05

* cpe:/a:libpng:libpng:1.2.25:beta04

* cpe:/a:libpng:libpng:1.2.25:beta03

* cpe:/a:libpng:libpng:1.2.25:beta02

* cpe:/a:libpng:libpng:1.2.26:beta05

* cpe:/a:libpng:libpng:1.2.26:rc01

* cpe:/a:libpng:libpng:1.2.3

* cpe:/a:libpng:libpng:1.2.3:rc3

* cpe:/a:libpng:libpng:1.2.3:rc6

* cpe:/a:libpng:libpng:1.2.30

* cpe:/a:libpng:libpng:1.2.31

* cpe:/a:libpng:libpng:1.2.33

* cpe:/a:libpng:libpng:1.2.34

* cpe:/a:libpng:libpng:1.2.35 and previous versions

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Information Leak / Disclosure (CWE-200)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042