CVE-2010-2249

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.

References

http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commitdiff;h=90cfcecc09febb8d6c8c1d37ea7bb7cf0f4b00f3#patch20

http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html

http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html

http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html

http://lists.vmware.com/pipermail/security-announce/2010/000105.html

http://secunia.com/advisories/40302

http://secunia.com/advisories/40336

http://secunia.com/advisories/40472

http://secunia.com/advisories/40547

http://secunia.com/advisories/41574

http://secunia.com/advisories/42314

http://secunia.com/advisories/42317

http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061

http://support.apple.com/kb/HT4435

http://support.apple.com/kb/HT4456

http://support.apple.com/kb/HT4457

http://support.apple.com/kb/HT4554

http://support.apple.com/kb/HT4566

http://www.debian.org/security/2010/dsa-2072

http://www.libpng.org/pub/png/libpng.html

http://www.mandriva.com/security/advisories?name=MDVSA-2010:133

http://www.securityfocus.com/bid/41174

http://www.securitytracker.com/id?1024723

http://www.ubuntu.com/usn/USN-960-1

http://www.vmware.com/security/advisories/VMSA-2010-0014.html

http://www.vupen.com/english/advisories/2010/1612

http://www.vupen.com/english/advisories/2010/1637

http://www.vupen.com/english/advisories/2010/1755

http://www.vupen.com/english/advisories/2010/1837

http://www.vupen.com/english/advisories/2010/1846

http://www.vupen.com/english/advisories/2010/1877

http://www.vupen.com/english/advisories/2010/2491

http://www.vupen.com/english/advisories/2010/3045

http://www.vupen.com/english/advisories/2010/3046

https://bugzilla.redhat.com/show_bug.cgi?id=608644

https://exchange.xforce.ibmcloud.com/vulnerabilities/59816

Details

Source: MITRE

Published: 2010-06-30

Updated: 2020-08-14

Type: CWE-401

Risk Information

CVSS v2

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 6.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Tenable Plugins

View all (31 total)

IDNameProductFamilySeverity
68063Oracle Linux 3 / 4 / 5 : libpng (ELSA-2010-0534)NessusOracle Linux Local Security Checks
high
60816Scientific Linux Security Update : libpng on SL3.x, SL4.x, SL5.x i386/x86_64NessusScientific Linux Local Security Checks
high
801013Safari < 5.0.4 Multiple VulnerabilitiesLog Correlation EngineWeb Clients
high
5813Safari < 5.0.4 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
52613Safari < 5.0.4 Multiple VulnerabilitiesNessusWindows
high
5806iTunes < 10.2 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
52535Apple iTunes < 10.2 Multiple Vulnerabilities (uncredentialed check)NessusPeer-To-Peer File Sharing
high
52534Apple iTunes < 10.2 Multiple Vulnerabilities (credentialed check)NessusWindows
high
50941SuSE 11 / 11.1 Security Update : libpng (SAT Patch Numbers 3045 / 3046)NessusSuSE Local Security Checks
high
5715Apple iOS < 4.2 Multiple VulnerabilitiesNessus Network MonitorMobile Devices
critical
800791Mac OS X 10.6 < 10.6.5 Multiple VulnerabilitiesLog Correlation EngineOperating System Detection
high
5705Mac OS X 10.6 < 10.6.5 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
50549Mac OS X Multiple Vulnerabilities (Security Update 2010-007)NessusMacOS X Local Security Checks
high
50548Mac OS X 10.6.x < 10.6.5 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
49882SuSE 10 Security Update : libpng (ZYPP Patch Number 7144)NessusSuSE Local Security Checks
high
49771GLSA-201010-01 : Libpng: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
49193openSUSE Security Update : libpng-devel (openSUSE-SU-2010:0594-1)NessusSuSE Local Security Checks
high
49192openSUSE Security Update : libpng-devel (openSUSE-SU-2010:0594-1)NessusSuSE Local Security Checks
high
49191SuSE9 Security Update : libpng (YOU Patch Number 12642)NessusSuSE Local Security Checks
high
48192Mandriva Linux Security Advisory : libpng (MDVSA-2010:133)NessusMandriva Local Security Checks
high
47876RHEL 3 / 4 / 5 : libpng (RHSA-2010:0534)NessusRed Hat Local Security Checks
high
47837Fedora 13 : mingw32-libpng-1.2.44-1.fc13 (2010-10793)NessusFedora Local Security Checks
high
47836Fedora 12 : mingw32-libpng-1.2.44-1.fc12 (2010-10776)NessusFedora Local Security Checks
high
47772Fedora 12 : libpng10-1.0.54-1.fc12 (2010-10833)NessusFedora Local Security Checks
high
47771Fedora 13 : libpng10-1.0.54-1.fc13 (2010-10823)NessusFedora Local Security Checks
high
47767Debian DSA-2072-1 : libpng - several vulnerabilitiesNessusDebian Local Security Checks
high
47741CentOS 3 / 4 / 5 : libpng / libpng10 (CESA-2010:0534)NessusCentOS Local Security Checks
high
47695Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : libpng vulnerabilities (USN-960-1)NessusUbuntu Local Security Checks
high
47599Fedora 12 : libpng-1.2.44-1.fc12 (2010-10592)NessusFedora Local Security Checks
high
47587Fedora 13 : libpng-1.2.44-1.fc13 (2010-10557)NessusFedora Local Security Checks
high
47562Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2010-180-01)NessusSlackware Local Security Checks
high