[gentoo-announce] [GLSA 200407-06] libpng: Buffer overflow on row buffers - gentoo-announce

From:	Sune Kloppenborg Jeppesen <jaervosz@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××.com, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] [GLSA 200407-06] libpng: Buffer overflow on row buffers
Date:	Thu, 08 Jul 2004 16:26:41
Message-Id:	`200407081814.35362.jaervosz@gentoo.org`

1

-----BEGIN PGP SIGNED MESSAGE-----

2

Hash: SHA1

3

4

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

5

Gentoo Linux Security Advisory                           GLSA 200407-06

6

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

7

                                            http://security.gentoo.org/

8

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

9

10

  Severity: Normal

11

     Title: libpng: Buffer overflow on row buffers

12

      Date: July 08, 2004

13

      Bugs: #56307

14

        ID: 200407-06

15

16

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

17

18

Synopsis

19

========

20

21

libpng contains a buffer overflow vulnerability potentially allowing an

22

attacker to perform a Denial of Service attack or even execute

23

arbitrary code.

24

25

Background

26

==========

27

28

libpng is a standard library used to process PNG (Portable Network

29

Graphics) images. It is used by several other programs, including web

30

browsers and potentially server processes.

31

32

Affected packages

33

=================

34

35

    -------------------------------------------------------------------

36

     Package            /   Vulnerable   /                  Unaffected

37

    -------------------------------------------------------------------

38

  1  media-libs/libpng      <= 1.2.5-r6                    >= 1.2.5-r7

39

40

Description

41

===========

42

43

Due to a wrong calculation of loop offset values, libpng contains a

44

buffer overflow vulnerability on the row buffers. This vulnerability

45

was initially patched in January 2003 but since it has been discovered

46

that libpng contains the same vulnerability in two other places.

47

48

Impact

49

======

50

51

An attacker could exploit this vulnerability to cause programs linked

52

against the library to crash or execute arbitrary code with the

53

permissions of the user running the vulnerable program, which could be

54

the root user.

55

56

Workaround

57

==========

58

59

There is no known workaround at this time. All users are encouraged to

60

upgrade to the latest available version.

61

62

Resolution

63

==========

64

65

All libpng users should upgrade to the latest stable version:

66

67

    # emerge sync

68

69

    # emerge -pv ">=media-libs/libpng-1.2.5-r7"

70

    # emerge ">=media-libs/libpng-1.2.5-r7"

71

72

You should also run revdep-rebuild to rebuild any packages that depend

73

on older versions of libpng :

74

75

    # revdep-rebuild

76

77

References

78

==========

79

80

  [ 1 ] CAN-2002-1363

81

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1363

82

83

Availability

84

============

85

86

This GLSA and any updates to it are available for viewing at

87

the Gentoo Security Website:

88

89

    http://security.gentoo.org/glsa/glsa-200407-06.xml

90

91

Concerns?

92

=========

93

94

Security is a primary focus of Gentoo Linux and ensuring the

95

confidentiality and security of our users machines is of utmost

96

importance to us. Any security concerns should be addressed to

97

security@g.o or alternatively, you may file a bug at

98

http://bugs.gentoo.org.

99

100

License

101

=======

102

103

Copyright 2004 Gentoo Foundation, Inc; referenced text

104

belongs to its owner(s).

105

106

The contents of this document are licensed under the

107

Creative Commons - Attribution / Share Alike license.

108

109

http://creativecommons.org/licenses/by-sa/1.0

110

-----BEGIN PGP SIGNATURE-----

111

Version: GnuPG v1.2.4 (GNU/Linux)

112

113

iD8DBQFA7XK8zKC5hMHO6rkRAjLuAJ9zW3QogSBVEPOSgX0XS9Pv5qlx9gCdGKR+

114

UDQw/XJ+RWHohdUW3gY0rNg=

115

=nU11

116

-----END PGP SIGNATURE-----

1	-----BEGIN PGP SIGNED MESSAGE-----
2	Hash: SHA1
3
4	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
5	Gentoo Linux Security Advisory GLSA 200407-06
6	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
7	http://security.gentoo.org/
8	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
9
10	Severity: Normal
11	Title: libpng: Buffer overflow on row buffers
12	Date: July 08, 2004
13	Bugs: #56307
14	ID: 200407-06
15
16	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
17
18	Synopsis
19	========
20
21	libpng contains a buffer overflow vulnerability potentially allowing an
22	attacker to perform a Denial of Service attack or even execute
23	arbitrary code.
24
25	Background
26	==========
27
28	libpng is a standard library used to process PNG (Portable Network
29	Graphics) images. It is used by several other programs, including web
30	browsers and potentially server processes.
31
32	Affected packages
33	=================
34
35	-------------------------------------------------------------------
36	Package / Vulnerable / Unaffected
37	-------------------------------------------------------------------
38	1 media-libs/libpng <= 1.2.5-r6 >= 1.2.5-r7
39
40	Description
41	===========
42
43	Due to a wrong calculation of loop offset values, libpng contains a
44	buffer overflow vulnerability on the row buffers. This vulnerability
45	was initially patched in January 2003 but since it has been discovered
46	that libpng contains the same vulnerability in two other places.
47
48	Impact
49	======
50
51	An attacker could exploit this vulnerability to cause programs linked
52	against the library to crash or execute arbitrary code with the
53	permissions of the user running the vulnerable program, which could be
54	the root user.
55
56	Workaround
57	==========
58
59	There is no known workaround at this time. All users are encouraged to
60	upgrade to the latest available version.
61
62	Resolution
63	==========
64
65	All libpng users should upgrade to the latest stable version:
66
67	# emerge sync
68
69	# emerge -pv ">=media-libs/libpng-1.2.5-r7"
70	# emerge ">=media-libs/libpng-1.2.5-r7"
71
72	You should also run revdep-rebuild to rebuild any packages that depend
73	on older versions of libpng :
74
75	# revdep-rebuild
76
77	References
78	==========
79
80	[ 1 ] CAN-2002-1363
81	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1363
82
83	Availability
84	============
85
86	This GLSA and any updates to it are available for viewing at
87	the Gentoo Security Website:
88
89	http://security.gentoo.org/glsa/glsa-200407-06.xml
90
91	Concerns?
92	=========
93
94	Security is a primary focus of Gentoo Linux and ensuring the
95	confidentiality and security of our users machines is of utmost
96	importance to us. Any security concerns should be addressed to
97	security@g.o or alternatively, you may file a bug at
98	http://bugs.gentoo.org.
99
100	License
101	=======
102
103	Copyright 2004 Gentoo Foundation, Inc; referenced text
104	belongs to its owner(s).
105
106	The contents of this document are licensed under the
107	Creative Commons - Attribution / Share Alike license.
108
109	http://creativecommons.org/licenses/by-sa/1.0
110	-----BEGIN PGP SIGNATURE-----
111	Version: GnuPG v1.2.4 (GNU/Linux)
112
113	iD8DBQFA7XK8zKC5hMHO6rkRAjLuAJ9zW3QogSBVEPOSgX0XS9Pv5qlx9gCdGKR+
114	UDQw/XJ+RWHohdUW3gY0rNg=
115	=nU11
116	-----END PGP SIGNATURE-----

Gentoo Archives: gentoo-announce