CVE - CVE-2006-5793

CVE-ID
CVE-2006-5793	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2008-03-18 URL:http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html BID:21078 URL:http://www.securityfocus.com/bid/21078 BUGTRAQ:20061115 rPSA-2006-0211-1 libpng URL:http://www.securityfocus.com/archive/1/451874/100/200/threaded BUGTRAQ:20061204 rPSA-2006-0211-2 doxygen libpng URL:http://www.securityfocus.com/archive/1/453484/100/100/threaded BUGTRAQ:20080304 CORE-2008-0124: Multiple vulnerabilities in Google's Android SDK URL:http://www.securityfocus.com/archive/1/489135/100/0/threaded CONFIRM:http://android-developers.blogspot.com/2008/03/android-sdk-update-m5-rc15-released.html CONFIRM:http://docs.info.apple.com/article.html?artnum=307562 CONFIRM:http://sourceforge.net/project/shownotes.php?release_id=464278 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2007-254.htm CONFIRM:https://issues.rpath.com/browse/RPL-790 CONFIRM:https://issues.rpath.com/browse/RPL-824 GENTOO:GLSA-200611-09 URL:http://security.gentoo.org/glsa/glsa-200611-09.xml MANDRIVA:MDKSA-2006:209 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:209~~ (Obsolete source) MANDRIVA:MDKSA-2006:210 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:210~~ (Obsolete source) MANDRIVA:MDKSA-2006:211 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:211~~ (Obsolete source) MANDRIVA:MDKSA-2006:212 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:212~~ (Obsolete source) MISC:http://bugs.gentoo.org/attachment.cgi?id=101400&action=view MISC:http://bugs.gentoo.org/show_bug.cgi?id=154380 MISC:http://www.coresecurity.com/?action=item&id=2148 OPENPKG:OpenPKG-SA-2006.036 URL:http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.036.html OVAL:oval:org.mitre.oval:def:10324 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10324 REDHAT:RHSA-2007:0356 URL:http://www.redhat.com/support/errata/RHSA-2007-0356.html SECTRACK:1017244 URL:http://securitytracker.com/id?1017244 SECUNIA:22889 URL:http://secunia.com/advisories/22889 SECUNIA:22900 URL:http://secunia.com/advisories/22900 SECUNIA:22941 URL:http://secunia.com/advisories/22941 SECUNIA:22950 URL:http://secunia.com/advisories/22950 SECUNIA:22951 URL:http://secunia.com/advisories/22951 SECUNIA:22956 URL:http://secunia.com/advisories/22956 SECUNIA:22958 URL:http://secunia.com/advisories/22958 SECUNIA:23208 URL:http://secunia.com/advisories/23208 SECUNIA:23335 URL:http://secunia.com/advisories/23335 SECUNIA:25329 URL:http://secunia.com/advisories/25329 SECUNIA:25742 URL:http://secunia.com/advisories/25742 SECUNIA:29420 URL:http://secunia.com/advisories/29420 SLACKWARE:SSA:2006-335-03 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.465035 SUSE:SUSE-SR:2006:028 URL:http://www.novell.com/linux/security/advisories/2006_28_sr.html TRUSTIX:2006-0065 URL:~~http://www.trustix.org/errata/2006/0065/~~ (Obsolete source - check if archived by the Wayback Machine) UBUNTU:USN-383-1 URL:http://www.ubuntu.com/usn/usn-383-1 VUPEN:ADV-2006-4521 URL:~~http://www.vupen.com/english/advisories/2006/4521~~ (Obsolete source) VUPEN:ADV-2006-4568 URL:~~http://www.vupen.com/english/advisories/2006/4568~~ (Obsolete source) VUPEN:ADV-2008-0924 URL:~~http://www.vupen.com/english/advisories/2008/0924/references~~ (Obsolete source) XF:libpng-pngsetsplt-dos(30290) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/30290
Assigning CNA
MITRE Corporation
Date Record Created
20061108	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061108)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)