Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2008-5907

Опубликовано: 15 янв. 2009
Источник: ubuntu
Приоритет: low
CVSS2: 5

Описание

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.

РелизСтатусПримечание
dapper

released

1.2.8rel-5ubuntu0.4
devel

released

1.2.27-2ubuntu2
gutsy

released

1.2.15~beta5-2ubuntu0.2
hardy

released

1.2.15~beta5-3ubuntu0.1
intrepid

released

1.2.27-1ubuntu0.1
upstream

released

1.2.35-1

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2008-5907

redhat
около 17 лет назад

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.

nvd логотип

CVE-2008-5907

nvd
около 17 лет назад

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.

debian логотип

CVE-2008-5907

debian
около 17 лет назад

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, ...

github логотип

GHSA-598m-m5h8-fc92

github
больше 3 лет назад

The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.

fstec логотип

BDU:2015-09372

fstec
почти 17 лет назад

Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации

5 Medium

CVSS2