Vulnerability Note VU#236656
libpng png_handle_iCCP() NULL pointer dereference
The Portable Network Graphics library (libpng) contains a remotely exploitable vulnerability that could cause affected applications to crash.
The Portable Network Graphics (PNG) image format is used as an alternative to other image formats such as the Graphics Interchange Format (GIF). The libpng reference library is available for application developers to support the PNG image format.
Under some circumstances, a null pointer may be dereferenced during a memory allocation in the png_handle_iCCP() function. As a result, a PNG file with particular characteristics could cause the affected application to crash. Similar errors are reported to exist in other locations within libpng.
An attacker could cause a vulnerable application to crash by supplying a specially crafted PNG image. Vulnerable applications that read images from network sources could be exploited remotely.
Apply a patch from the vendor
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Apple Computer, Inc.||Affected||16 Jul 2004||01 Jun 2005|
|Debian Linux||Affected||16 Jul 2004||20 Aug 2004|
|Gentoo||Affected||-||20 Aug 2004|
|Hewlett-Packard Company||Affected||16 Jul 2004||20 Aug 2004|
|libpng.org||Affected||16 Jul 2004||04 Aug 2004|
|Mandriva, Inc.||Affected||16 Jul 2004||20 Aug 2004|
|Mandriva, Inc.||Affected||16 Jul 2004||04 Aug 2004|
|MontaVista Software, Inc.||Affected||16 Jul 2004||04 Aug 2004|
|OpenPKG||Affected||-||20 Aug 2004|
|Red Hat, Inc.||Affected||16 Jul 2004||20 Aug 2004|
|Slackware||Affected||-||20 Aug 2004|
|Sun Microsystems, Inc.||Affected||16 Jul 2004||04 Aug 2004|
|SUSE Linux||Affected||16 Jul 2004||04 Aug 2004|
|Trustix Secure Linux||Affected||-||20 Aug 2004|
|Hitachi||Not Affected||16 Jul 2004||20 Aug 2004|
CVSS Metrics (Learn More)
Thanks to Chris Evans for reporting this vulnerability.
This document was written by Chad Dougherty and Damon Morda.
- CVE IDs: CVE-2004-0598
- Date Public: 04 Aug 2004
- Date First Published: 04 Aug 2004
- Date Last Updated: 20 Jul 2007
- Severity Metric: 1.05
- Document Revision: 17
If you have feedback, comments, or additional information about this vulnerability, please send us email.