CVE-2009-2042

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.

References

http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html

http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html

http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

http://lists.vmware.com/pipermail/security-announce/2010/000090.html

http://secunia.com/advisories/35346

http://secunia.com/advisories/35470

http://secunia.com/advisories/35524

http://secunia.com/advisories/35594

http://secunia.com/advisories/39206

http://secunia.com/advisories/39215

http://secunia.com/advisories/39251

http://security.gentoo.org/glsa/glsa-200906-01.xml

http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809

http://support.apple.com/kb/HT4077

http://ubuntu.com/usn/usn-913-1

http://www.debian.org/security/2010/dsa-2032

http://www.libpng.org/pub/png/libpng.html

http://www.mandriva.com/security/advisories?name=MDVSA-2010:063

http://www.securityfocus.com/bid/35233

http://www.vmware.com/security/advisories/VMSA-2010-0007.html

http://www.vupen.com/english/advisories/2009/1510

http://www.vupen.com/english/advisories/2010/0637

http://www.vupen.com/english/advisories/2010/0682

http://www.vupen.com/english/advisories/2010/0847

https://exchange.xforce.ibmcloud.com/vulnerabilities/50966

https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html

https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html

Details

Source: MITRE

Published: 2009-06-12

Updated: 2017-08-17

Type: CWE-200

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:libpng:libpng:0.89c:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:0.95:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.7:beta17:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.7:beta18:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.7:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.7:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.8:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta10:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta7:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta8:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:beta9:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.9:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.10:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.10:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.10:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.11:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.11:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.11:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.11:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.11:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.12:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.12:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.12:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.13:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.14:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.15:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.15:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.15:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.15:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.16:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.17:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.17:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.18:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.19:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.19:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.19:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.19:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.19:rc5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.20:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.21:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.21:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.21:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.22:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.22:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.23:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.0.23:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.0:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.1:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:beta6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.2:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.3:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.3:rc6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:beta7:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.10:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.11:rc5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.13:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.13:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.13:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.13:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.14:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.14:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.14:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.14:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:beta6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:rc4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.15:rc5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.16:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.16:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.16:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.16:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.17:rc4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.18:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta10:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta11:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta12:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta13:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta14:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta15:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta16:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta17:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta18:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta19:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta20:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta21:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta23:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta24:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta25:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta26:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta27:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta28:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta29:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta30:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta31:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta32:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta33:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta7:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta8:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:beta9:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.19:rc6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:beta01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:beta02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:beta03:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:beta04:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc5:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.20:rc6:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:rc2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.21:rc3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta2:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta2-1.2.21:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta3:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta3-1.2.21:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta4:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:beta4-1.2.21:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:rc1:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.22:rc1-1.2.21:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta01-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta02-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta03:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta03-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta04:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta04-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta05:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:beta05-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:rc01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.23:rc01-1.2.22:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta01-1.2.23:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta02-1.2.23:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta03:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:beta03-1.2.23:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:rc01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.24:rc01-1.2.23:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta03:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta04:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta05:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:beta06:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:rc01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.25:rc02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:beta01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:beta02:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:beta03:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:beta04:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:beta05:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.26:rc01:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.30:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.31:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.33:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:1.2.34:*:*:*:*:*:*:*

cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:* versions up to 1.2.35 (inclusive)

Tenable Plugins

View all (23 total)

IDNameProductFamilySeverity
79961GLSA-201412-08 : Multiple packages, Multiple vulnerabilities fixed in 2010NessusGentoo Local Security Checks
critical
68063Oracle Linux 3 / 4 / 5 : libpng (ELSA-2010-0534)NessusOracle Linux Local Security Checks
high
60816Scientific Linux Security Update : libpng on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
56246VMSA-2010-0007 : VMware hosted products, vCenter Server and ESX patches resolve multiple security issuesNessusVMware ESX Local Security Checks
critical
47876RHEL 3 / 4 / 5 : libpng (RHSA-2010:0534)NessusRed Hat Local Security Checks
high
47741CentOS 3 / 4 / 5 : libpng / libpng10 (CESA-2010:0534)NessusCentOS Local Security Checks
high
45541VMware Products Multiple Vulnerabilities (VMSA-2010-0007)NessusWindows
high
45480Debian DSA-2032-1 : libpng - several vulnerabilitiesNessusDebian Local Security Checks
high
5489Mac OS X < 10.6.3 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
45373Mac OS X Multiple Vulnerabilities (Security Update 2010-002)NessusMacOS X Local Security Checks
critical
45372Mac OS X 10.6.x < 10.6.3 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
45124Mandriva Linux Security Advisory : libpng (MDVSA-2010:063)NessusMandriva Local Security Checks
high
45080Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : libpng vulnerabilities (USN-913-1)NessusUbuntu Local Security Checks
high
42016openSUSE 10 Security Update : libpng (libpng-6324)NessusSuSE Local Security Checks
medium
41549SuSE 10 Security Update : libpng (ZYPP Patch Number 6326)NessusSuSE Local Security Checks
medium
41426SuSE 11 Security Update : libpng (SAT Patch Number 1039)NessusSuSE Local Security Checks
medium
41308SuSE9 Security Update : libpng (YOU Patch Number 12444)NessusSuSE Local Security Checks
medium
40266openSUSE Security Update : libpng-devel (libpng-devel-1046)NessusSuSE Local Security Checks
medium
40040openSUSE Security Update : libpng-devel (libpng-devel-1046)NessusSuSE Local Security Checks
medium
39561GLSA-200906-01 : libpng: Information disclosureNessusGentoo Local Security Checks
medium
39472Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2009-170-01)NessusSlackware Local Security Checks
medium
39405Fedora 10 : mingw32-libpng-1.2.37-1.fc10 (2009-6400)NessusFedora Local Security Checks
medium
39397Fedora 11 : mingw32-libpng-1.2.37-1.fc11 (2009-5977)NessusFedora Local Security Checks
medium