REDHAT-BUG-1599943: Integer Overflow
First published: Wed Jul 11 2018(Updated: )
libpng through version 1.6.34 is vulnerable to an integer overflow and resultant divide-by-zero in the pngrutil.c:png_check_chunk_length() function. An attacker could exploit this to cause a denial of service via crafted PNG file. Upstream Bug: <a href="https://sourceforge.net/p/libpng/bugs/278/">https://sourceforge.net/p/libpng/bugs/278/</a> Upstream Patch: <a href="https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2">https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| libpng | <=1.6.34 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://sourceforge.net/p/libpng/bugs/278/
- https://github.com/glennrp/libpng/commit/8a05766cb74af05c04c53e6c9d60c13fc4d59bf2
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599944
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599950
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599945
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599946
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599947
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599949
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1599948
- https://github.com/glennrp/libpng/commit/2dca15686fadb1b8951cb29b02bad4cae73448da
- https://access.redhat.com/errata/RHSA-2018:3007
- https://access.redhat.com/errata/RHSA-2018:3008
- https://access.redhat.com/errata/RHSA-2018:3000
- https://access.redhat.com/errata/RHSA-2018:3001
- https://access.redhat.com/errata/RHSA-2018:3002
- https://access.redhat.com/errata/RHSA-2018:3003
- https://access.redhat.com/errata/RHSA-2018:3533
- https://access.redhat.com/errata/RHSA-2018:3534
- https://access.redhat.com/errata/RHSA-2018:3671
- https://access.redhat.com/errata/RHSA-2018:3672
- https://access.redhat.com/errata/RHSA-2018:3779
- https://access.redhat.com/errata/RHSA-2018:3852
- https://bugzilla.redhat.com/show_bug.cgi?id=1599943
Frequently Asked Questions
What is the severity of REDHAT-BUG-1599943?
The severity of REDHAT-BUG-1599943 is classified as a denial of service vulnerability.
How do I fix REDHAT-BUG-1599943?
To fix REDHAT-BUG-1599943, upgrade to libpng version 1.6.35 or later.
What versions of libpng are affected by REDHAT-BUG-1599943?
libpng versions up to and including 1.6.34 are affected by REDHAT-BUG-1599943.
What could an attacker do using the vulnerability in REDHAT-BUG-1599943?
An attacker could exploit REDHAT-BUG-1599943 to cause a denial of service by using a crafted PNG file.
Where can I find more information about REDHAT-BUG-1599943?
More information about REDHAT-BUG-1599943 can be found in the related bug reports and upstream discussions.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-13785
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/libpng
- canonical/libpng