Showing 1 - 10 of 10

CVE-2007-5269

Status Candidate

Overview

Certain chunk handlers in libpng before 1.0.29 and 1.2.x before 1.2.21 allow remote attackers to cause a denial of service (crash) via crafted (1) pCAL (png_handle_pCAL), (2) sCAL (png_handle_sCAL), (3) tEXt (png_push_read_tEXt), (4) iTXt (png_handle_iTXt), and (5) ztXT (png_handle_ztXt) chunking in PNG images, which trigger out-of-bounds read operations.

Related Files

Gentoo Linux Security Advisory 201412-11: Posted Dec 12, 2014; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201412-11 - Multiple vulnerabilities have been found in AMD64 x86 emulation base libraries, the worst of which may allow remote execution of arbitrary code. Versions prior to 20140406-r1 are affected.; tags | advisory, remote, arbitrary, x86, vulnerability; systems | linux, gentoo; advisories | CVE-2007-0720, CVE-2007-1536, CVE-2007-2026, CVE-2007-2445, CVE-2007-2741, CVE-2007-3108, CVE-2007-4995, CVE-2007-5116, CVE-2007-5135, CVE-2007-5266, CVE-2007-5268, CVE-2007-5269, CVE-2007-5849, CVE-2010-1205, CVE-2013-0338, CVE-2013-0339, CVE-2013-1664, CVE-2013-1969, CVE-2013-2877, CVE-2014-0160; SHA-256 | 0d52bd946d4c830b5f1f480535296f513bafe2d3abc811d6666cbb6fb317a087; Download | Favorite | View

Gentoo Linux Security Advisory 201209-25: Posted Sep 30, 2012; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201209-25 - Multiple vulnerabilities have been found in VMware Player, Server, and Workstation, allowing remote and local attackers to conduct several attacks, including privilege escalation, remote execution of arbitrary code, and a Denial of Service.; tags | advisory, remote, denial of service, arbitrary, local, vulnerability; systems | linux, gentoo; advisories | CVE-2007-5269, CVE-2007-5503, CVE-2007-5671, CVE-2008-0967, CVE-2008-1340, CVE-2008-1361, CVE-2008-1362, CVE-2008-1363, CVE-2008-1364, CVE-2008-1392, CVE-2008-1447, CVE-2008-1806, CVE-2008-1807, CVE-2008-1808, CVE-2008-2098, CVE-2008-2100, CVE-2008-2101, CVE-2008-4915, CVE-2008-4916, CVE-2008-4917, CVE-2009-0040, CVE-2009-0909, CVE-2009-0910, CVE-2009-1244, CVE-2009-2267, CVE-2009-3707, CVE-2009-3732, CVE-2009-3733; SHA-256 | 69658d66093686eada54ad82e7c69c212f082445ebab3cf082f1e1fbc3b98de1; Download | Favorite | View

Debian Linux Security Advisory 1750-1: Posted Mar 24, 2009; Authored by Debian | Site debian.org; Debian Security Advisory 1750-1 - Several vulnerabilities have been discovered in libpng, a library for reading and writing PNG files.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2007-2445, CVE-2007-5269, CVE-2008-1382, CVE-2008-5907, CVE-2008-6218, CVE-2009-0040; SHA-256 | 0e924f59ce027e66a6e689dc0b274aa6836b5b191f719fc7a80659d3e59e9152; Download | Favorite | View

Ubuntu Security Notice 730-1: Posted Mar 6, 2009; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice USN-730-1 - A large amount of vulnerabilities in libpng have been addressed. These range from denial of service to remote code execution issues.; tags | advisory, remote, denial of service, vulnerability, code execution; systems | linux, ubuntu; advisories | CVE-2007-5268, CVE-2007-5269, CVE-2008-1382, CVE-2008-3964, CVE-2008-5907, CVE-2009-0040; SHA-256 | bf1668416bc0c504288cc177db2f2c946b397313a140888d671c84f861f5103d; Download | Favorite | View

VMware Security Advisory 2008-0014: Posted Aug 31, 2008; Authored by VMware | Site vmware.com; VMware Security Advisory - Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.; tags | advisory, info disclosure; advisories | CVE-2008-2101, CVE-2007-5269, CVE-2008-1447, CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3694, CVE-2008-3695, CVE-2007-5438, CVE-2008-3696, CVE-2008-3697, CVE-2008-3698, CVE-2008-1806, CVE-2008-1807, CVE-2008-1808, CVE-2007-5503; SHA-256 | cf33ed983d59f3fe21ba66fc27682e8a073a9ba1d0031e69d9302bd25acc6efd; Download | Favorite | View

VMware Security Advisory 2008-0005: Posted Mar 19, 2008; Authored by VMware | Site vmware.com; VMware Security Advisory - VMWare has addressed a folder traversal vulnerability, an insecure named pipe vulnerability, libpng, and various other bits and pieces.; tags | advisory; advisories | CVE-2008-0923, CVE-2008-0923, CVE-2008-1361, CVE-2008-1362, CVE-2007-5269, CVE-2006-2940, CVE-2006-2937, CVE-2006-4343, CVE-2006-4339, CVE-2007-5618, CVE-2008-1364, CVE-2008-1363, CVE-2008-1340; SHA-256 | 42fe37cf6697bb1a04612faac0d018560285c356a5e5480bf92552485d44e572; Download | Favorite | View

Core Security Technologies Advisory 2008.0124: Posted Mar 4, 2008; Authored by Core Security Technologies | Site coresecurity.com; Core Security Technologies Advisory - Google's Android SDK suffers from heap and integer overflow vulnerabilities. Proof of concept code included.; tags | exploit, overflow, vulnerability, proof of concept; advisories | CVE-2008-0986, CVE-2008-0985, CVE-2006-5793, CVE-2007-2445, CVE-2007-5267, CVE-2007-5266, CVE-2007-5268, CVE-2007-5269; SHA-256 | db70984bcafa3398efb1a27f29b4cb70fd1830830d6b36d9e5f74f71f24c8993; Download | Favorite | View

Mandriva Linux Security Advisory 2007.217: Posted Nov 14, 2007; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - Multiple vulnerabilities were discovered in libpng including an off-by-one error and out of bounds read errors.; tags | advisory, vulnerability; systems | linux, mandriva; advisories | CVE-2007-5266, CVE-2007-5268, CVE-2007-5269; SHA-256 | c37104d040ce7628fd58f11b0d8b28b5e2b0b47e751c023aecfe5cc2bd45047a; Download | Favorite | View

Gentoo Linux Security Advisory 200711-8: Posted Nov 7, 2007; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory GLSA 200711-08 - An off-by-one error when handling ICC profile chunks in the png_set_iCCP() function was discovered. George Cook and Jeff Phillips reported several errors in pngrtran.c, the use of logical instead of a bitwise functions and incorrect comparisons. Tavis Ormandy reported out-of-bounds read errors in several PNG chunk handling functions. Versions less than 1.2.21-r3 are affected.; tags | advisory; systems | linux, gentoo; advisories | CVE-2007-5266, CVE-2007-5268, CVE-2007-5269; SHA-256 | d69eab70f1eed07c06dddfddec2d2a89e5accf81afc417284e481013a4068d2f; Download | Favorite | View

Ubuntu Security Notice 538-1: Posted Oct 26, 2007; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 538-1 - It was discovered that libpng did not properly perform bounds checking and comparisons in certain operations. An attacker could send a specially crafted PNG image and cause a denial of service in applications linked against libpng.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2007-5268, CVE-2007-5269; SHA-256 | 2b20b75f005f129b60076a0029902d501282fd1f58699b341d0d3f01535a3f5d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 55 files
LiquidWorm 20 files
Debian 18 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2007-5269

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems