Lucene search
Ubuntu.comUB:CVE-2009-2042HistoryJun 12, 2009 - 12:00 a.m.
CVE-2009-2042
2009-06-1200:00:00
ubuntu.com
ubuntu.com
16
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.6%
libpng before 1.2.37 does not properly parse 1-bit interlaced images with
width values that are not divisible by 8, which causes libpng to include
uninitialized bits in certain rows of a PNG file and might allow remote
attackers to read portions of sensitive memory via “out-of-bounds pixels”
in the file.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | libpng | < 1.2.8rel-5ubuntu0.5 | UNKNOWN |
| ubuntu | 8.04 | noarch | libpng | < 1.2.15~beta5-3ubuntu0.2 | UNKNOWN |
| ubuntu | 8.10 | noarch | libpng | < 1.2.27-1ubuntu0.2 | UNKNOWN |
| ubuntu | 9.04 | noarch | libpng | < 1.2.27-2ubuntu2.1 | UNKNOWN |
| ubuntu | 8.04 | noarch | xulrunner-1.9 | < 1.9.0.7+nobinonly-0ubuntu0.8.04.1 | UNKNOWN |
| ubuntu | 8.10 | noarch | xulrunner-1.9 | < 1.9.0.7+nobinonly-0ubuntu0.8.10.1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9 | < 1.9.0.7+nobinonly-0ubuntu1 | UNKNOWN |
| ubuntu | 9.04 | noarch | xulrunner-1.9.1 | < 1.9.1.3+build1+nobinonly-0ubuntu0.9.04.2 | UNKNOWN |
Related
securityvulns
securityvulns
libpng information leak
2009-06-29 00:00:00
[ GLSA 200906-01 ] libpng: Information disclosure
2009-06-29 00:00:00
nessus
nessus
openSUSE Security Update : libpng-devel (libpng-devel-1046)
2009-07-21 00:00:00
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2009-170-01)
2009-06-21 00:00:00
Fedora 11 : libpng-1.2.37-1.fc11 (2009-6506)
2009-06-19 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200906-01 (libpng)
2009-06-30 00:00:00
SLES9: Security update for libpng
2009-10-10 00:00:00
SLES10: Security update for libpng
2009-10-13 00:00:00
slackware
slackware
libpng
2009-06-19 18:18:38
veracode
veracode
Information Disclosure
2020-04-10 00:43:55
fedora
fedora
[SECURITY] Fedora 11 Update: libpng-1.2.37-1.fc11
2009-06-18 11:38:21
[SECURITY] Fedora 11 Update: libpng-1.2.43-1.fc11
2010-03-25 22:40:32
[SECURITY] Fedora 10 Update: libpng-1.2.37-1.fc10
2009-06-18 11:40:55
cve
cve
CVE-2009-2042
2009-06-12 20:30:00
prion
prion
Out-of-bounds
2009-06-12 20:30:00
gentoo
gentoo
libpng: Information disclosure
2009-06-27 00:00:00
Multiple packages, Multiple vulnerabilities fixed in 2010
2014-12-11 00:00:00
debian
debian
[SECURITY] [DSA 2032-1] New libpng packages fix several vulnerabilities
2010-04-11 16:56:05
[SECURITY] [DSA 2032-1] New libpng packages fix several vulnerabilities
2010-04-11 16:56:05
ubuntu
ubuntu
libpng vulnerabilities
2010-03-16 00:00:00
osv
osv
libpng - several vulnerabilities
2010-04-11 00:00:00
redhat
redhat
(RHSA-2010:0534) Important: libpng security update
2010-07-14 00:00:00
oraclelinux
oraclelinux
libpng security update
2010-07-14 00:00:00
centos
centos
libpng, libpng10 security update
2010-07-14 22:40:18
vmware
vmware
suse
suse
remote code execution in dhcp-client
2009-07-15 16:27:03
threatpost
threatpost
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.007 Low
EPSS
Percentile
80.6%
Related for UB:CVE-2009-2042