Name | CVE-2008-3964 |
Description | Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the png_push_read_zTXt function in pngread.c, and possibly related to (2) pngtest.c. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Debian Bugs | 501109 |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|
libpng | source | etch | (not affected) | | | |
libpng | source | (unstable) | 1.2.27-2 | low | | 501109 |
Notes
[etch] - libpng <not-affected> (Vulnerable code not present)
off-by-one error in pngpread.c is not present, must have
been introduced later, but pngtest.c is affected. However, there
is no known exploit.