Back to search
CVE-2007-2445
Published: May 16, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.17 allows remote attackers to cause a denial of service (application crash) via a grayscale PNG image with a bad tRNS chunk CRC value.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
OpenPKG-SA-2007.013
vendor-advisory
x_refsource_OPENPKG
http://support.avaya.com/elmodocs2/security/ASA-2007-254.htm
x_refsource_CONFIRM
SSA:2007-136-01
vendor-advisory
x_refsource_SLACKWARE
25571
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10094
vdb-entry
signature
x_refsource_OVAL
VU#684664
third-party-advisory
x_refsource_CERT-VN
DSA-1613
vendor-advisory
x_refsource_DEBIAN
102987
vendor-advisory
x_refsource_SUNALERT
200871
vendor-advisory
x_refsource_SUNALERT
34388
third-party-advisory
x_refsource_SECUNIA
36196
vdb-entry
x_refsource_OSVDB
GLSA-200705-24
vendor-advisory
x_refsource_GENTOO
25273
third-party-advisory
x_refsource_SECUNIA
http://www.coresecurity.com/?action=item&id=2148
x_refsource_MISC
24023
vdb-entry
x_refsource_BID
libpng-trns-chunk-dos(34340)
vdb-entry
x_refsource_XF
ADV-2008-0924
vdb-entry
x_refsource_VUPEN
http://irrlicht.sourceforge.net/changes.txt
x_refsource_CONFIRM
25867
third-party-advisory
x_refsource_SECUNIA
http://sourceforge.net/project/shownotes.php?release_id=508653&group_id=5624
x_refsource_CONFIRM
31168
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-1381
x_refsource_CONFIRM
25329
third-party-advisory
x_refsource_SECUNIA
25461
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1838
vdb-entry
x_refsource_VUPEN
29420
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2385
vdb-entry
x_refsource_VUPEN
http://sourceforge.net/project/shownotes.php?release_id=508656&group_id=5624
x_refsource_CONFIRM
APPLE-SA-2008-03-18
vendor-advisory
x_refsource_APPLE
25353
third-party-advisory
x_refsource_SECUNIA
20070517 FLEA-2007-0018-1: libpng
mailing-list
x_refsource_BUGTRAQ
30161
third-party-advisory
x_refsource_SECUNIA
GLSA-200805-07
vendor-advisory
x_refsource_GENTOO
25554
third-party-advisory
x_refsource_SECUNIA
25268
third-party-advisory
x_refsource_SECUNIA
DSA-1750
vendor-advisory
x_refsource_DEBIAN
1018078
vdb-entry
x_refsource_SECTRACK
2007-0019
vendor-advisory
x_refsource_TRUSTIX
SUSE-SR:2007:013
vendor-advisory
x_refsource_SUSE
USN-472-1
vendor-advisory
x_refsource_UBUNTU
27056
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0356
vendor-advisory
x_refsource_REDHAT
25292
third-party-advisory
x_refsource_SECUNIA
http://docs.info.apple.com/article.html?artnum=307562
x_refsource_CONFIRM
25787
third-party-advisory
x_refsource_SECUNIA
25742
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:116
vendor-advisory
x_refsource_MANDRIVA
24000
vdb-entry
x_refsource_BID
20080304 CORE-2008-0124: Multiple vulnerabilities in Google's Android SDK
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now