FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0597

This CVE name corresponds to:

Entered Topic
2004-08-04 libpng stack-based buffer overflow and other code concerns

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2004-0597 at cve.mitre.org

Details

Type Candidate
Name CVE-2004-0597
Phase Assigned(20040623)

Description

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

References

Source Reference
MISC http://scary.beasts.org/security/CESA-2004-001.txt
VULNWATCH 20050208 CORE-2004-0819: MSN Messenger PNG Image Parsing Vulnerability
MISC http://www.coresecurity.com/common/showdoc.php?idx=421&idxseccion=10
BUGTRAQ 20050209 MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit
CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-114816-02-1
APPLE APPLE-SA-2004-09-09
CONECTIVA CLA-2004:856
DEBIAN DSA-536
FEDORA FLSA:1943
FEDORA FLSA:2089
GENTOO GLSA-200408-03
GENTOO GLSA-200408-22
HP SSRT4778
MANDRAKE MDKSA-2004:079
MANDRIVA MDKSA-2006:212
MANDRIVA MDKSA-2006:213
MS MS05-009
REDHAT RHSA-2004:402
REDHAT RHSA-2004:421
REDHAT RHSA-2004:429
SCO SCOSA-2004.16
SCO SCOSA-2005.49
SUNALERT 200663
SUSE SUSE-SA:2004:023
TRUSTIX 2004-0040
BUGTRAQ 20040804 [OpenPKG-SA-2004.035] OpenPKG Security Advisory (png)
CONFIRM http://www.mozilla.org/projects/security/known-vulnerabilities.html
CONFIRM http://www.adobe.com/support/downloads/detail.jsp?ftpID=2679
CERT TA04-217A
CERT TA05-039A
CERT-VN VU#388984
CERT-VN VU#817368
BID 15495
BID 10857
OVAL oval:org.mitre.oval:def:2274
OVAL oval:org.mitre.oval:def:2378
OVAL oval:org.mitre.oval:def:594
OVAL oval:org.mitre.oval:def:4492
OVAL oval:org.mitre.oval:def:11284
OVAL oval:org.mitre.oval:def:7709
SECUNIA 22957
SECUNIA 22958
XF libpng-pnghandle-bo(16894)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.