CVE-2013-6954

NameCVE-2013-6954
DescriptionThe png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-2923-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
libpng (PTS)jessie, jessie (lts)1.2.50-2+deb8u3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
libpngsource(unstable)(not affected)
openjdk-7sourcewheezy7u55-2.4.7-1~deb7u1DSA-2923-1

Notes

- libpng <not-affected> (Vulnerable code introduced in 1.6.1)
https://bugzilla.redhat.com/show_bug.cgi?id=1045561
http://sourceforge.net/mailarchive/message.php?msg_id=31751422

Search for package or bug name: Reporting problems