Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
http://blackberry.com/btsc/KB27244
http://code.google.com/p/chromium/issues/detail?id=45983
http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html
http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://lists.vmware.com/pipermail/security-announce/2010/000105.html
http://secunia.com/advisories/40302
http://secunia.com/advisories/40336
http://secunia.com/advisories/40472
http://secunia.com/advisories/40547
http://secunia.com/advisories/41574
http://secunia.com/advisories/42314
http://secunia.com/advisories/42317
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061
http://support.apple.com/kb/HT4312
http://support.apple.com/kb/HT4435
http://support.apple.com/kb/HT4456
http://support.apple.com/kb/HT4457
http://support.apple.com/kb/HT4554
http://support.apple.com/kb/HT4566
http://trac.webkit.org/changeset/61816
http://www.debian.org/security/2010/dsa-2072
http://www.libpng.org/pub/png/libpng.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:133
http://www.mozilla.org/security/announce/2010/mfsa2010-41.html
http://www.securityfocus.com/bid/41174
http://www.ubuntu.com/usn/USN-960-1
http://www.vmware.com/security/advisories/VMSA-2010-0014.html
http://www.vupen.com/english/advisories/2010/1612
http://www.vupen.com/english/advisories/2010/1637
http://www.vupen.com/english/advisories/2010/1755
http://www.vupen.com/english/advisories/2010/1837
http://www.vupen.com/english/advisories/2010/1846
http://www.vupen.com/english/advisories/2010/1877
http://www.vupen.com/english/advisories/2010/2491
http://www.vupen.com/english/advisories/2010/3045
http://www.vupen.com/english/advisories/2010/3046
https://bugs.webkit.org/show_bug.cgi?id=40798
https://bugzilla.mozilla.org/show_bug.cgi?id=570451
https://bugzilla.redhat.com/show_bug.cgi?id=608238
https://exchange.xforce.ibmcloud.com/vulnerabilities/59815
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11851
Source: MITRE
Published: 2010-06-30
Updated: 2020-08-14
Type: CWE-120
Base Score: 7.5
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 10
Severity: HIGH
Base Score: 9.8
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 3.9
Severity: CRITICAL
OR
OR
OR
cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions from 2.0 to 4.1 (inclusive)
OR
OR
cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
OR
cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
OR
cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
OR
OR
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
79964 | GLSA-201412-11 : AMD64 x86 emulation base libraries: Multiple vulnerabilities (Heartbleed) | Nessus | Gentoo Local Security Checks | high |
79961 | GLSA-201412-08 : Multiple packages, Multiple vulnerabilities fixed in 2010 | Nessus | Gentoo Local Security Checks | critical |
75731 | openSUSE Security Update : seamonkey (openSUSE-SU-2010:0430-1) | Nessus | SuSE Local Security Checks | high |
75669 | openSUSE Security Update : mozilla-xulrunner191 (mozilla-xulrunner191-2779) | Nessus | SuSE Local Security Checks | high |
75658 | openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2010:0430-2) | Nessus | SuSE Local Security Checks | high |
75646 | openSUSE Security Update : MozillaFirefox (MozillaFirefox-2807) | Nessus | SuSE Local Security Checks | critical |
68068 | Oracle Linux 4 / 5 : firefox (ELSA-2010-0547) | Nessus | Oracle Linux Local Security Checks | high |
68067 | Oracle Linux 3 / 4 : seamonkey (ELSA-2010-0546) | Nessus | Oracle Linux Local Security Checks | high |
68063 | Oracle Linux 3 / 4 / 5 : libpng (ELSA-2010-0534) | Nessus | Oracle Linux Local Security Checks | high |
63939 | RHEL 5 : thunderbird (RHSA-2010:0545) | Nessus | Red Hat Local Security Checks | critical |
63402 | GLSA-201301-01 : Mozilla Products: Multiple vulnerabilities (BEAST) | Nessus | Gentoo Local Security Checks | critical |
60822 | Scientific Linux Security Update : thunderbird on SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | critical |
60820 | Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | high |
60818 | Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | high |
60816 | Scientific Linux Security Update : libpng on SL3.x, SL4.x, SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | high |
55819 | BlackBerry Enterprise Server PNG and TIFF Image Processing Vulnerabilities (KB27244) | Nessus | Windows | critical |
801013 | Safari < 5.0.4 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
5813 | Safari < 5.0.4 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | high |
52613 | Safari < 5.0.4 Multiple Vulnerabilities | Nessus | Windows | high |
5806 | iTunes < 10.2 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | high |
52535 | Apple iTunes < 10.2 Multiple Vulnerabilities (uncredentialed check) | Nessus | Peer-To-Peer File Sharing | high |
52534 | Apple iTunes < 10.2 Multiple Vulnerabilities (credentialed check) | Nessus | Windows | high |
50941 | SuSE 11 / 11.1 Security Update : libpng (SAT Patch Numbers 3045 / 3046) | Nessus | SuSE Local Security Checks | high |
50874 | SuSE 11 / 11.1 Security Update : Mozilla Firefox (SAT Patch Numbers 2780 / 2781) | Nessus | SuSE Local Security Checks | high |
5715 | Apple iOS < 4.2 Multiple Vulnerabilities | Nessus Network Monitor | Mobile Devices | critical |
800791 | Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities | Log Correlation Engine | Operating System Detection | high |
5705 | Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities | Nessus Network Monitor | Generic | critical |
50549 | Mac OS X Multiple Vulnerabilities (Security Update 2010-007) | Nessus | MacOS X Local Security Checks | high |
50548 | Mac OS X 10.6.x < 10.6.5 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | critical |
49894 | SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7101) | Nessus | SuSE Local Security Checks | high |
49882 | SuSE 10 Security Update : libpng (ZYPP Patch Number 7144) | Nessus | SuSE Local Security Checks | high |
49771 | GLSA-201010-01 : Libpng: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
49193 | openSUSE Security Update : libpng-devel (openSUSE-SU-2010:0594-1) | Nessus | SuSE Local Security Checks | high |
49192 | openSUSE Security Update : libpng-devel (openSUSE-SU-2010:0594-1) | Nessus | SuSE Local Security Checks | high |
49191 | SuSE9 Security Update : libpng (YOU Patch Number 12642) | Nessus | SuSE Local Security Checks | high |
48424 | Mac OS X Multiple Vulnerabilities (Security Update 2010-005) | Nessus | MacOS X Local Security Checks | high |
48342 | CentOS 3 : seamonkey (CESA-2010:0546) | Nessus | CentOS Local Security Checks | high |
48192 | Mandriva Linux Security Advisory : libpng (MDVSA-2010:133) | Nessus | Mandriva Local Security Checks | high |
47907 | openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0430-3) | Nessus | SuSE Local Security Checks | high |
47906 | openSUSE Security Update : MozillaFirefox (openSUSE-SU-2010:0430-3) | Nessus | SuSE Local Security Checks | high |
47889 | Debian DSA-2075-1 : xulrunner - several vulnerabilities | Nessus | Debian Local Security Checks | high |
47881 | RHEL 4 / 5 : firefox (RHSA-2010:0547) | Nessus | Red Hat Local Security Checks | high |
47880 | RHEL 3 / 4 : seamonkey (RHSA-2010:0546) | Nessus | Red Hat Local Security Checks | high |
47876 | RHEL 3 / 4 / 5 : libpng (RHSA-2010:0534) | Nessus | Red Hat Local Security Checks | high |
47868 | openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2010:0430-2) | Nessus | SuSE Local Security Checks | high |
47857 | Ubuntu 10.04 LTS : thunderbird vulnerabilities (USN-958-1) | Nessus | Ubuntu Local Security Checks | high |
47856 | Ubuntu 8.04 LTS / 10.04 LTS : firefox, firefox-3.0, xulrunner-1.9.2 vulnerability (USN-957-2) | Nessus | Ubuntu Local Security Checks | critical |
47854 | openSUSE Security Update : seamonkey (openSUSE-SU-2010:0430-1) | Nessus | SuSE Local Security Checks | high |
47837 | Fedora 13 : mingw32-libpng-1.2.44-1.fc13 (2010-10793) | Nessus | Fedora Local Security Checks | high |
47836 | Fedora 12 : mingw32-libpng-1.2.44-1.fc12 (2010-10776) | Nessus | Fedora Local Security Checks | high |
47826 | Ubuntu 8.04 LTS / 10.04 LTS : firefox, firefox-3.0, xulrunner-1.9.2 vulnerabilities (USN-957-1) | Nessus | Ubuntu Local Security Checks | high |
47825 | Ubuntu 9.04 / 9.10 : ant, apturl, epiphany-browser, gluezilla, gnome-python-extras, liferea, mozvoikko, openjdk-6, packagekit, ubufox, webfav, yelp update (USN-930-5) | Nessus | Ubuntu Local Security Checks | critical |
47824 | Ubuntu 9.04 / 9.10 : firefox-3.0, firefox-3.5, xulrunner-1.9.2 vulnerabilities (USN-930-4) | Nessus | Ubuntu Local Security Checks | critical |
47813 | Fedora 13 : sunbird-1.0-0.26.b2pre.fc13 / thunderbird-3.1.1-1.fc13 (2010-11379) | Nessus | Fedora Local Security Checks | high |
47812 | Fedora 12 : firefox-3.5.11-1.fc12 / galeon-2.0.7-24.fc12 / gnome-python2-extras-2.25.3-19.fc12 / etc (2010-11375) | Nessus | Fedora Local Security Checks | high |
47811 | Fedora 12 : seamonkey-2.0.6-1.fc12 (2010-11363) | Nessus | Fedora Local Security Checks | high |
47810 | Fedora 12 : sunbird-1.0-0.23.20090916hg.fc12 / thunderbird-3.0.6-1.fc12 (2010-11361) | Nessus | Fedora Local Security Checks | critical |
47809 | Fedora 13 : firefox-3.6.7-1.fc13 / galeon-2.0.7-30.fc13 / gnome-python2-extras-2.25.3-20.fc13 / etc (2010-11345) | Nessus | Fedora Local Security Checks | high |
47807 | Fedora 13 : seamonkey-2.0.6-1.fc13 (2010-11327) | Nessus | Fedora Local Security Checks | high |
47806 | CentOS 4 / 5 : firefox (CESA-2010:0547) | Nessus | CentOS Local Security Checks | high |
47805 | CentOS 5 : thunderbird (CESA-2010:0545) | Nessus | CentOS Local Security Checks | critical |
47794 | FreeBSD : mozilla -- multiple vulnerabilities (8c2ea875-9499-11df-8e32-000f20797ede) | Nessus | FreeBSD Local Security Checks | high |
47781 | Firefox < 3.5.11 Multiple Vulnerabilities | Nessus | Windows | high |
800871 | SeaMonkey 2.0.x < 2.0.6 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
800782 | Firefox 3.5.x < 3.5.11 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
800780 | Firefox 3.6.x < 3.6.7 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
5610 | SeaMonkey 2.0.x < 2.0.6 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
5609 | Mozilla Thunderbird 3.1.x < 3.1.1 Multiple Vulnerabilities | Nessus Network Monitor | SMTP Clients | medium |
5608 | Mozilla Thunderbird 3.0.x < 3.0.6 Multiple Vulnerabilities | Nessus Network Monitor | SMTP Clients | medium |
5607 | Mozilla Firefox 3.6.x < 3.6.7 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
5606 | Mozilla Firefox 3.5.x < 3.5.11 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | medium |
47785 | SeaMonkey < 2.0.6 Multiple Vulnerabilities | Nessus | Windows | high |
47784 | Mozilla Thunderbird 3.1.x < 3.1.1 Multiple Vulnerabilities | Nessus | Windows | high |
47783 | Mozilla Thunderbird < 3.0.6 Multiple Vulnerabilities | Nessus | Windows | high |
47772 | Fedora 12 : libpng10-1.0.54-1.fc12 (2010-10833) | Nessus | Fedora Local Security Checks | high |
47771 | Fedora 13 : libpng10-1.0.54-1.fc13 (2010-10823) | Nessus | Fedora Local Security Checks | high |
47767 | Debian DSA-2072-1 : libpng - several vulnerabilities | Nessus | Debian Local Security Checks | high |
47741 | CentOS 3 / 4 / 5 : libpng / libpng10 (CESA-2010:0534) | Nessus | CentOS Local Security Checks | high |
47695 | Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : libpng vulnerabilities (USN-960-1) | Nessus | Ubuntu Local Security Checks | high |
47599 | Fedora 12 : libpng-1.2.44-1.fc12 (2010-10592) | Nessus | Fedora Local Security Checks | high |
47587 | Fedora 13 : libpng-1.2.44-1.fc13 (2010-10557) | Nessus | Fedora Local Security Checks | high |
47562 | Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2010-180-01) | Nessus | Slackware Local Security Checks | high |
47155 | FreeBSD : png -- libpng decompression buffer overflow (edef3f2f-82cf-11df-bcce-0018f3e2eb82) | Nessus | FreeBSD Local Security Checks | high |