| Vulnerability Name: | CVE-2007-2445 (CCN-34340) | ||||||||||||||||||||||||||||||||||||||||||||
| Assigned: | 2007-05-15 | ||||||||||||||||||||||||||||||||||||||||||||
| Published: | 2007-05-15 | ||||||||||||||||||||||||||||||||||||||||||||
| Updated: | 2018-10-16 | ||||||||||||||||||||||||||||||||||||||||||||
| Summary: | The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.17 allows remote attackers to cause a denial of service (application crash) via a grayscale PNG image with a bad tRNS chunk CRC value. | ||||||||||||||||||||||||||||||||||||||||||||
| CVSS v3 Severity: | 3.7 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||||||||||||||||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P) 3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
1.9 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||||||||||||||||||||||||||||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||||||||||||||||||||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||||||||||||||||||||||||||
| References: | Source: CONFIRM Type: UNKNOWN http://android-developers.blogspot.com/2008/03/android-sdk-update-m5-rc15-released.html Source: MITRE Type: CNA CVE-2007-2445 Source: CCN Type: Apple Web site About Security Update 2008-002 Source: CONFIRM Type: UNKNOWN http://docs.info.apple.com/article.html?artnum=307562 Source: CONFIRM Type: UNKNOWN http://irrlicht.sourceforge.net/changes.txt Source: APPLE Type: UNKNOWN APPLE-SA-2008-03-18 Source: OPENPKG Type: UNKNOWN OpenPKG-SA-2007.013 Source: OSVDB Type: UNKNOWN 36196 Source: CCN Type: RHSA-2007-0356 Moderate: libpng security update Source: SECUNIA Type: Vendor Advisory 25268 Source: SECUNIA Type: Vendor Advisory 25273 Source: CCN Type: SA25292 libpng tRNS Chunk Denial of Service Source: SECUNIA Type: Vendor Advisory 25292 Source: SECUNIA Type: Vendor Advisory 25329 Source: SECUNIA Type: UNKNOWN 25353 Source: SECUNIA Type: UNKNOWN 25461 Source: SECUNIA Type: UNKNOWN 25554 Source: SECUNIA Type: UNKNOWN 25571 Source: CCN Type: SA25742 Avaya Products libpng tRNS/sPLT Chunk Denial of Service Source: SECUNIA Type: UNKNOWN 25742 Source: SECUNIA Type: UNKNOWN 25787 Source: CCN Type: SA25867 Sun Solaris libpng tRNS Chunk Denial of Service Source: SECUNIA Type: UNKNOWN 25867 Source: CCN Type: SA27056 Irrlicht libpng tRNS Chunk Denial of Service Source: SECUNIA Type: UNKNOWN 27056 Source: CCN Type: SA29420 Mac OS X Security Update Fixes Multiple Vulnerabilities Source: SECUNIA Type: UNKNOWN 29420 Source: CCN Type: SA30161 Gentoo ltsp Multiple Vulnerabilities Source: SECUNIA Type: UNKNOWN 30161 Source: SECUNIA Type: UNKNOWN 31168 Source: SECUNIA Type: UNKNOWN 34388 Source: CCN Type: SECTRACK ID: 1018078 libpng PNG tRNS Chunk Processing Error Lets Remote Users Deny Service Source: SLACKWARE Type: UNKNOWN SSA:2007-136-01 Source: CONFIRM Type: Patch http://sourceforge.net/project/shownotes.php?release_id=508653&group_id=5624 Source: CONFIRM Type: Patch http://sourceforge.net/project/shownotes.php?release_id=508656&group_id=5624 Source: CCN Type: SourceForge.net PNG reference library: libpng Source: CCN Type: Sun Alert ID: 102987 libpng(3) Contains a Denial of Service (DoS) Vulnerability Source: SUNALERT Type: UNKNOWN 102987 Source: CCN Type: Sun Alert ID: 200871 libpng(3) Contains a Denial of Service (DoS) Vulnerability Source: SUNALERT Type: UNKNOWN 200871 Source: CONFIRM Type: UNKNOWN http://support.avaya.com/elmodocs2/security/ASA-2007-254.htm Source: CCN Type: ASA-2007-254 libpng security update (RHSA-2007-0356) Source: CCN Type: ASA-2007-303 libpng(3) Contains a Denial of Service (DoS) Vulnerability (Sun 102987) Source: CCN Type: CORE-2008-0124 Multiple vulnerabilities in Google's Android SDK Source: MISC Type: UNKNOWN http://www.coresecurity.com/?action=item&id=2148 Source: DEBIAN Type: UNKNOWN DSA-1613 Source: DEBIAN Type: UNKNOWN DSA-1750 Source: DEBIAN Type: DSA-1613 libgd2 -- multiple vulnerabilities Source: DEBIAN Type: DSA-1750 libpng -- several vulnerabilities Source: CCN Type: GLSA-200705-24 libpng: Denial of Service Source: GENTOO Type: UNKNOWN GLSA-200705-24 Source: CCN Type: GLSA-200805-07 Linux Terminal Server Project: Multiple vulnerabilities Source: GENTOO Type: UNKNOWN GLSA-200805-07 Source: CCN Type: US-CERT VU#684664 libpng denial of service vulnerability Source: CERT-VN Type: Third Party Advisory, US Government Resource VU#684664 Source: MANDRIVA Type: UNKNOWN MDKSA-2007:116 Source: CCN Type: Libpng Security Advisory 15 May 2007 A grayscale PNG image with a malformed (bad CRC) tRNS chunk will crash some libpng applications. Source: CONFIRM Type: Vendor Advisory http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/l/li/libpng/libpng-1.2.17-ADVISORY.txt Source: SUSE Type: UNKNOWN SUSE-SR:2007:013 Source: CCN Type: OpenPKG-SA-2007.013 png Source: CCN Type: OSVDB ID: 36196 libpng png_handle_tRNS Function tRNS Chunk DoS Source: REDHAT Type: UNKNOWN RHSA-2007:0356 Source: BUGTRAQ Type: UNKNOWN 20070517 FLEA-2007-0018-1: libpng Source: BUGTRAQ Type: UNKNOWN 20080304 CORE-2008-0124: Multiple vulnerabilities in Google's Android SDK Source: BID Type: UNKNOWN 24000 Source: CCN Type: BID-24000 Libpng Library Remote Denial of Service Vulnerability Source: BID Type: UNKNOWN 24023 Source: CCN Type: BID-24023 Retired: Libpng Library Grayscale Image CRC Check Remote Denial of Service Vulnerability Source: SECTRACK Type: UNKNOWN 1018078 Source: TRUSTIX Type: UNKNOWN 2007-0019 Source: CCN Type: TLSA-2007-45 Denial of service Source: CCN Type: USN-472-1 libpng vulnerability Source: UBUNTU Type: UNKNOWN USN-472-1 Source: VUPEN Type: UNKNOWN ADV-2007-1838 Source: VUPEN Type: UNKNOWN ADV-2007-2385 Source: VUPEN Type: UNKNOWN ADV-2008-0924 Source: XF Type: UNKNOWN libpng-trns-chunk-dos(34340) Source: XF Type: UNKNOWN libpng-trns-chunk-dos(34340) Source: CONFIRM Type: UNKNOWN https://issues.rpath.com/browse/RPL-1381 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:10094 Source: SUSE Type: SUSE-SR:2007:013 SUSE Security Summary Report | ||||||||||||||||||||||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: Configuration RedHat 6: Configuration RedHat 7: Configuration RedHat 8: Configuration RedHat 9:  Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||||||||||||||||||||||