CVE Vulnerabilities

CVE-2007-5268

Published: Oct 08, 2007 | Modified: Oct 26, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
NEGLIGIBLE

pngrtran.c in libpng before 1.0.29 and 1.2.x before 1.2.21 use (1) logical instead of bitwise operations and (2) incorrect comparisons, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG image.

Affected Software

Name Vendor Start Version End Version
Libpng Libpng * 1.0.29 (excluding)
Libpng Libpng 1.2.0 (including) 1.2.21 (excluding)
Libpng Ubuntu feisty *
Libpng Ubuntu gutsy *
Libpng Ubuntu hardy *
Libpng Ubuntu upstream *

References