CVE-2008-3964
First published: Wed Sep 10 2008(Updated: )
Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the png_push_read_zTXt function in pngread.c, and possibly related to (2) pngtest.c.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libp2p | =1.4.0-beta21 | |
| Libp2p | =1.4.0-beta32 | |
| Libp2p | =1.4.0-beta2 | |
| Libp2p | =1.4.0-beta3 | |
| Libp2p | =1.4.0-beta4 | |
| Libp2p | =1.4.0-beta5 | |
| Libp2p | =1.4.0-beta6 | |
| Libp2p | =1.4.0-beta7 | |
| Libp2p | =1.4.0-beta8 | |
| Libp2p | =1.4.0-beta9 | |
| Libp2p | =1.4.0-beta10 | |
| Libp2p | =1.4.0-beta11 | |
| Libp2p | =1.4.0-beta12 | |
| Libp2p | =1.4.0-beta13 | |
| Libp2p | =1.4.0-beta14 | |
| Libp2p | =1.4.0-beta15 | |
| Libp2p | =1.4.0-beta16 | |
| Libp2p | =1.4.0-beta17 | |
| Libp2p | =1.4.0-beta18 | |
| Libp2p | =1.4.0-beta19 | |
| Libp2p | =1.4.0-beta20 | |
| Libp2p | =1.4.0-beta22 | |
| Libp2p | =1.4.0-beta23 | |
| Libp2p | =1.4.0-beta24 | |
| Libp2p | =1.4.0-beta25 | |
| Libp2p | =1.4.0-beta26 | |
| Libp2p | =1.4.0-beta27 | |
| Libp2p | =1.4.0-beta28 | |
| Libp2p | =1.4.0-beta29 | |
| Libp2p | =1.4.0-beta30 | |
| Libp2p | =1.4.0-beta31 | |
| Libp2p | =1.4.0-beta33 | |
| Libp2p | =1.4.0-beta1 | |
| Libp2p | <1.2.32 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2008/09/09/3
- http://sourceforge.net/tracker/index.php?func=detail&aid=2095669&group_id=5624&atid=105624
- http://sourceforge.net/project/shownotes.php?release_id=624518
- http://www.openwall.com/lists/oss-security/2008/09/09/8
- http://sourceforge.net/project/shownotes.php?group_id=5624&release_id=624517
- http://sourceforge.net/mailarchive/forum.php?thread_name=e56ccc8f0809180317u6a5306fg14683947affb3e1b%40mail.gmail.com&forum_name=png-mng-implement
- http://www.securityfocus.com/bid/31049
- http://www.kb.cert.org/vuls/id/889484
- http://secunia.com/advisories/33137
- http://security.gentoo.org/glsa/glsa-200812-15.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:051
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-259989-1
- http://www.vupen.com/english/advisories/2009/1462
- http://secunia.com/advisories/35302
- http://secunia.com/advisories/35386
- http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm
- http://www.vupen.com/english/advisories/2009/1560
- http://secunia.com/advisories/31781
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020521.1-1
- http://www.vupen.com/english/advisories/2008/2512
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44928
Frequently Asked Questions
What is the severity of CVE-2008-3964?
CVE-2008-3964 has a moderate severity level due to its potential to cause denial of service (crash) in affected systems.
How do I fix CVE-2008-3964?
To fix CVE-2008-3964, upgrade to libpng version 1.2.32 or later, or 1.4.0beta34 or later.
What software is affected by CVE-2008-3964?
CVE-2008-3964 affects versions of libpng prior to 1.2.32beta01 and 1.4 up to 1.4.0beta33.
What type of attack is possible with CVE-2008-3964?
CVE-2008-3964 allows context-dependent attackers to craft PNG images that can result in application crashes.
Is CVE-2008-3964 still a concern today?
While CVE-2008-3964 was disclosed in 2008, it remains a concern for systems that use outdated versions of libpng.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/libpng
- canonical/libp2p
- version/libp2p/1.4.0-beta21
- version/libp2p/1.4.0-beta32
- version/libp2p/1.4.0-beta2
- version/libp2p/1.4.0-beta3
- version/libp2p/1.4.0-beta4
- version/libp2p/1.4.0-beta5
- version/libp2p/1.4.0-beta6
- version/libp2p/1.4.0-beta7
- version/libp2p/1.4.0-beta8
- version/libp2p/1.4.0-beta9
- version/libp2p/1.4.0-beta10
- version/libp2p/1.4.0-beta11
- version/libp2p/1.4.0-beta12
- version/libp2p/1.4.0-beta13
- version/libp2p/1.4.0-beta14
- version/libp2p/1.4.0-beta15
- version/libp2p/1.4.0-beta16
- version/libp2p/1.4.0-beta17
- version/libp2p/1.4.0-beta18
- version/libp2p/1.4.0-beta19
- version/libp2p/1.4.0-beta20
- version/libp2p/1.4.0-beta22
- version/libp2p/1.4.0-beta23
- version/libp2p/1.4.0-beta24
- version/libp2p/1.4.0-beta25
- version/libp2p/1.4.0-beta26
- version/libp2p/1.4.0-beta27
- version/libp2p/1.4.0-beta28
- version/libp2p/1.4.0-beta29
- version/libp2p/1.4.0-beta30
- version/libp2p/1.4.0-beta31
- version/libp2p/1.4.0-beta33
- version/libp2p/1.4.0-beta1