#VU44881 Input validation error in libpng - CVE-2011-2501


| Updated: 2020-08-11

Vulnerability identifier: #VU44881

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2011-2501

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libpng
Universal components / Libraries / Libraries used by multiple products

Vendor: libpng

Description

The vulnerability allows remote attackers to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression.

Mitigation
Update to version 1.5.4.

Vulnerable software versions

libpng: 1.5.0 - 1.5.3

External links
https://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=65e6d5a34f49acdb362a0625a706c6b914e670af
https://lists.fedoraproject.org/pipermail/package-announce/2011-July/062720.html
https://lists.fedoraproject.org/pipermail/package-announce/2011-July/063118.html
https://secunia.com/advisories/45046
https://secunia.com/advisories/45289
https://secunia.com/advisories/45405
https://secunia.com/advisories/45415
https://secunia.com/advisories/45460
https://secunia.com/advisories/45486
https://secunia.com/advisories/45492
https://secunia.com/advisories/49660
https://security.gentoo.org/glsa/glsa-201206-15.xml
https://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.617466
https://sourceforge.net/mailarchive/forum.php?thread_name=BANLkTikrnU6FJNQYFvwmt78hwpgKPVRd1Q%40mail.gmail.com&forum_name=png-mng-implement
https://www.debian.org/security/2011/dsa-2287
https://www.mandriva.com/security/advisories?name=MDVSA-2011:151
https://www.openwall.com/lists/oss-security/2011/06/27/13
https://www.openwall.com/lists/oss-security/2011/06/28/16
https://www.redhat.com/support/errata/RHSA-2011-1105.html
https://www.securityfocus.com/bid/48474
https://www.ubuntu.com/usn/USN-1175-1
https://bugzilla.redhat.com/show_bug.cgi?id=717084
https://exchange.xforce.ibmcloud.com/vulnerabilities/68517

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


openEuler update for syslinux
Gentoo update for libpng
Multiple vulnerabilities in libpng
Fedora EPEL 6 update for libpng10
Fedora EPEL 6 update for mingw32-libpng
Fedora EPEL 5 update for mingw32-libpng