CVE-2008-5907: Double Free
First published: Thu Jan 15 2009(Updated: )
The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libpng Libpng | <1.0.42 | |
| Libpng Libpng | >=1.2.0<1.2.34 | |
| Debian Debian Linux | =5.0 | |
| Debian Debian Linux | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://libpng.sourceforge.net/index.html
- http://openwall.com/lists/oss-security/2009/01/09/1
- http://sourceforge.net/mailarchive/forum.php?thread_name=4B6F0239C13D0245820603C036D180BC79FBAA%40CABOTUKEXCH01.cabot.local&forum_name=png-mng-implement
- http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:051
- http://security.gentoo.org/glsa/glsa-200903-28.xml
- http://secunia.com/advisories/34320
- http://secunia.com/advisories/34388
- http://www.debian.org/security/2009/dsa-1750
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48128
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/libpng
- canonical/libpng libpng
- version/libpng libpng/1.2.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/5.0
- version/debian debian linux/4.0