|
|
Libpng Library ICC Profile Chunk Off-By-One Denial of Service Vulnerability
|
Bugtraq ID:
|
25957
|
|
Class:
|
Design Error
|
|
CVE:
|
CVE-2007-5267
CVE-2007-5266
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Oct 08 2007 12:00AM
|
|
Updated:
|
May 29 2008 05:53PM
|
|
Credit:
|
bnanson is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
VMWare Workstation 6.0.2
VMWare Workstation 6.0.1
VMWare Workstation 6.0
VMWare Server 1.0.4
VMWare Server 1.0.3
VMWare Server 1.0.2
Slackware Linux 10.2
Slackware Linux 10.1
Slackware Linux 10.0
Slackware Linux 9.1
Slackware Linux 9.0
Slackware Linux 8.1
Slackware Linux 12.0
Slackware Linux 11.0
rPath rPath Linux 1
RedHat Fedora 7 0
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 2008.0 x86_64
MandrakeSoft Linux Mandrake 2008.0
MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 4.0
libpng libpng3 1.2.13
+
Slackware Linux 11.0
libpng libpng3 1.2.12
+
Slackware Linux 11.0
libpng libpng3 1.2.8
+
Slackware Linux 10.2
+
Slackware Linux 10.1
+
Slackware Linux 10.1
+
Trustix Secure Linux 3.0.5
+
Trustix Secure Linux 3.0
+
Trustix Secure Linux 2.2
libpng libpng3 1.2.5
+
Gentoo Linux 1.4 _rc1
+
Gentoo Linux 1.4 _rc1
+
Gentoo Linux 1.2
+
Gentoo Linux 1.2
+
MandrakeSoft Linux Mandrake 10.0 AMD64
+
MandrakeSoft Linux Mandrake 10.0 AMD64
+
MandrakeSoft Linux Mandrake 10.0
+
MandrakeSoft Linux Mandrake 10.0
+
MandrakeSoft Linux Mandrake 9.2 amd64
+
MandrakeSoft Linux Mandrake 9.2 amd64
+
MandrakeSoft Linux Mandrake 9.2
+
MandrakeSoft Linux Mandrake 9.2
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
MandrakeSoft Linux Mandrake 9.1
+
RedHat Fedora Core1
+
Slackware Linux 10.0
+
Slackware Linux 9.1
+
Slackware Linux 9.1
+
Slackware Linux 9.0
+
Slackware Linux 9.0
+
Slackware Linux -current
+
Slackware Linux -current
+
Ubuntu Ubuntu Linux 4.1 ppc
+
Ubuntu Ubuntu Linux 4.1 ppc
+
Ubuntu Ubuntu Linux 4.1 ia64
+
Ubuntu Ubuntu Linux 4.1 ia64
+
Ubuntu Ubuntu Linux 4.1 ia32
+
Ubuntu Ubuntu Linux 4.1 ia32
libpng libpng 1.2.21
Google Android Software Development Kit (SDK) m3-rc37a
Foresight Linux Foresight Linux 1.1
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.4.11
Apple Mac OS X 10.5
|
|
|
|
Not Vulnerable:
|
VMWare Workstation 6.0.3
VMWare Server 1.0.5
libpng libpng 1.2.22 rc1
Google Android Software Development Kit (SDK) m5-rc15
|
|
|
