Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2008-1382
HistoryApr 14, 2008 - 12:00 a.m.

CVE-2008-1382

2008-04-1400:00:00
ubuntu.com
ubuntu.com
13

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON

libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through
1.4.0beta19 allows context-dependent attackers to cause a denial of service
(crash) and possibly execute arbitrary code via a PNG file with zero length
β€œunknown” chunks, which trigger an access of uninitialized memory.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchlibpng<Β 1.2.8rel-5ubuntu0.4UNKNOWN
ubuntu7.10noarchlibpng<Β 1.2.15~beta5-2ubuntu0.2UNKNOWN
ubuntu8.04noarchlibpng<Β 1.2.15~beta5-3ubuntu0.1UNKNOWN

Related

securityvulns 7
fedora 11
nessus 35
slackware 1
openvas 47
veracode 1
freebsd 1
gentoo 4
cve 2
seebug 1
prion 2
oraclelinux 2
redhat 1
centos 2
vmware 1
ubuntu 1
debian 1
osv 1
securityvulns
securityvulns
rPSA-2008-0151-1 libpng
2008-05-01 00:00:00
[ GLSA 200805-10 ] Pngcrush: User-assisted execution of arbitrary code
2008-05-13 00:00:00
libpng uninitialized memory reference
2008-04-14 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: libpng10-1.0.41-1.fc8
2008-11-13 03:37:56
[SECURITY] Fedora 9 Update: libpng-1.2.29-1.fc9
2008-06-03 07:34:52
[SECURITY] Fedora 9 Update: libpng10-1.0.41-1.fc9
2008-11-13 03:37:05
nessus
nessus
SuSE9 Security Update : libpng (YOU Patch Number 12141)
2009-09-24 00:00:00
GLSA-200805-10 : Pngcrush: User-assisted execution of arbitrary code
2008-05-13 00:00:00
GLSA-200804-15 : libpng: Execution of arbitrary code
2008-04-17 00:00:00
slackware
slackware
[slackware-security] libpng
2008-04-29 07:20:31
openvas
openvas
SLES10: Security update for libpng
2009-10-13 00:00:00
Gentoo Security Advisory GLSA 200805-10 (pngcrush)
2008-09-24 00:00:00
Fedora Update for libpng10 FEDORA-2008-9379
2009-02-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:35:45
freebsd
freebsd
png -- unknown chunk processing uninitialized memory access
2008-04-12 00:00:00
gentoo
gentoo
libpng: Execution of arbitrary code
2008-04-15 00:00:00
Pngcrush: User-assisted execution of arbitrary code
2008-05-11 00:00:00
POV-Ray: User-assisted execution of arbitrary code
2008-12-14 00:00:00
cve
cve
CVE-2008-1382
2008-04-14 16:05:00
CVE-2007-6070
2020-01-17 19:15:00
seebug
seebug
LibpngεΊ“ζœͺηŸ₯η±»εž‹ε—ε€„η†θΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2008-04-15 00:00:00
prion
prion
Design/Logic Flaw
2008-04-14 16:05:00
Design/Logic Flaw
2020-01-17 19:15:00
oraclelinux
oraclelinux
libpng security update
2009-03-04 00:00:00
libpng security update
2009-03-04 00:00:00
redhat
redhat
(RHSA-2009:0333) Moderate: libpng security update
2009-03-04 00:00:00
centos
centos
libpng, libpng10 security update
2009-03-05 18:16:07
libpng security update
2009-03-11 03:53:56
vmware
vmware
VMware Hosted products and ESX and ESXi patches resolve security issues
2009-05-28 00:00:00
ubuntu
ubuntu
libpng vulnerabilities
2009-03-06 00:00:00
debian
debian
[SECURITY] [DSA 1750-1] New libpng packages fix several vulnerabilities
2009-03-22 17:16:04
osv
osv
libpng - several vulnerabilities
2009-03-22 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON
Related for UB:CVE-2008-1382
securityvulns7fedora11nessus35slackware1openvas47veracode1freebsd1gentoo4cve2seebug1prion2oraclelinux2redhat1centos2vmware1ubuntu1debian1osv1