CVE-2013-6954

MEDIUM

Description

The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.

References

http://advisories.mageia.org/MGASA-2014-0075.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127947.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127952.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128098.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128099.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128114.html

http://lists.opensuse.org/opensuse-updates/2014-01/msg00071.html

http://marc.info/?l=bugtraq&m=140852886808946&w=2

http://marc.info/?l=bugtraq&m=140852974709252&w=2

http://secunia.com/advisories/58974

http://secunia.com/advisories/59058

http://security.gentoo.org/glsa/glsa-201406-32.xml

http://sourceforge.net/p/libpng/code/ci/1faa6ff32c648acfe3cf30a58d31d7aebc24968c

http://sourceforge.net/projects/libpng/files/libpng16/1.6.8/

http://www.kb.cert.org/vuls/id/650142

http://www.libpng.org/pub/png/libpng.html

http://www.mandriva.com/security/advisories?name=MDVSA-2014:035

http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

http://www.securityfocus.com/bid/64493

http://www-01.ibm.com/support/docview.wss?uid=swg21672080

http://www-01.ibm.com/support/docview.wss?uid=swg21676746

https://access.redhat.com/errata/RHSA-2014:0413

https://access.redhat.com/errata/RHSA-2014:0414

https://bugzilla.redhat.com/show_bug.cgi?id=1045561

https://www.ibm.com/support/docview.wss?uid=swg21675973

Details

Source: MITRE

Published: 2014-01-12

Updated: 2018-01-05

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Tenable Plugins

View all (34 total)

IDNameProductFamilySeverity
82324Mandriva Linux Security Advisory : libpng12 (MDVSA-2015:071)NessusMandriva Local Security Checks
medium
80046openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1638-1)NessusSuSE Local Security Checks
critical
80045openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2014:1645-1)NessusSuSE Local Security Checks
critical
79039RHEL 5 / 6 : IBM Java Runtime in Satellite Server (RHSA-2014:0982)NessusRed Hat Local Security Checks
critical
79011RHEL 5 / 6 : java-1.6.0-sun (RHSA-2014:0414)NessusRed Hat Local Security Checks
critical
79010RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0413)NessusRed Hat Local Security Checks
critical
77812IBM Notes 9.0.x < 9.0.1 Fix Pack 2 Multiple VulnerabilitiesNessusWindows
critical
77811IBM Domino 9.0.x < 9.0.1 Fix Pack 2 Multiple Vulnerabilities (credentialed check) (POODLE)NessusWindows
critical
77810IBM Domino 9.x < 9.0.1 Fix Pack 2 Multiple Vulnerabilities (uncredentialed check)NessusMisc.
critical
77728VMware Security Updates for vCenter Server (VMSA-2014-0008)NessusMisc.
critical
77727VMware vCenter Update Manager Multiple Java Vulnerabilities (VMSA-2014-0008)NessusWindows
critical
76900RHEL 7 : java-1.7.1-ibm (RHSA-2014:0705)NessusRed Hat Local Security Checks
critical
76870AIX Java Advisory : java_apr2014_advisory.ascNessusAIX Local Security Checks
critical
76303GLSA-201406-32 : IcedTea JDK: Multiple vulnerabilities (BEAST) (ROBOT)NessusGentoo Local Security Checks
critical
75395openSUSE Security Update : libpng16 (openSUSE-SU-2014:0100-1)NessusSuSE Local Security Checks
medium
74387Fedora 19 : libpng-1.5.13-3.fc19 (2014-6717)NessusFedora Local Security Checks
medium
74284SuSE 11.3 Security Update : IBM Java 6 (SAT Patch Number 9256)NessusSuSE Local Security Checks
critical
74254SuSE 11.3 Security Update : IBM Java 7 (SAT Patch Number 9263)NessusSuSE Local Security Checks
critical
74232Fedora 20 : libpng-1.6.6-3.fc20 (2014-6631)NessusFedora Local Security Checks
medium
74031RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2014:0508)NessusRed Hat Local Security Checks
critical
74007SuSE 11.3 Security Update : OpenJDK (SAT Patch Number 9209)NessusSuSE Local Security Checks
critical
74005RHEL 5 / 6 : java-1.7.0-ibm (RHSA-2014:0486)NessusRed Hat Local Security Checks
critical
73868Debian DSA-2923-1 : openjdk-7 - security updateNessusDebian Local Security Checks
critical
73612Oracle JRockit R27 < R27.8.2 / R28 < R28.3.2 Multiple Vulnerabilities (April 2014 CPU)NessusWindows
critical
73608RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0412)NessusRed Hat Local Security Checks
critical
73571Oracle Java SE Multiple Vulnerabilities (April 2014 CPU) (Unix)NessusMisc.
critical
73570Oracle Java SE Multiple Vulnerabilities (April 2014 CPU)NessusWindows
critical
73315Fedora 20 : mingw-libpng-1.6.10-1.fc20 (2014-4564)NessusFedora Local Security Checks
medium
72550Mandriva Linux Security Advisory : libpng (MDVSA-2014:035)NessusMandriva Local Security Checks
medium
72447Fedora 20 : libpng15-1.5.17-2.fc20 (2014-1803)NessusFedora Local Security Checks
medium
72446Fedora 20 : libpng12-1.2.50-6.fc20 (2014-1770)NessusFedora Local Security Checks
medium
72445Fedora 19 : libpng12-1.2.50-4.fc19 (2014-1766)NessusFedora Local Security Checks
medium
72378Fedora 20 : libpng10-1.0.60-6.fc20 (2014-1778)NessusFedora Local Security Checks
medium
72377Fedora 19 : libpng10-1.0.60-6.fc19 (2014-1754)NessusFedora Local Security Checks
medium