CVE-2006-5793
Last modified
CVE-2006-5793 is a vulnerability of currently unknown severity. The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read.. EPSS estimates a 1.73% chance of exploitation in the next 30 days.
Description
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Greg Roelofs | Libpng | 1.0.6 |
| Greg Roelofs | Libpng | 1.0.7 |
| Greg Roelofs | Libpng | 1.0.8 |
| Greg Roelofs | Libpng | 1.0.9 |
| Greg Roelofs | Libpng | 1.2.0 |
| Greg Roelofs | Libpng | 1.2.1 |
| Greg Roelofs | Libpng | 1.2.2 |
| Greg Roelofs | Libpng | 1.2.3 |
| Greg Roelofs | Libpng | 1.2.4 |
| Greg Roelofs | Libpng | 1.2.5 |
| Greg Roelofs | Libpng | 1.2.6 |
| Greg Roelofs | Libpng | 1.2.7 |
| Greg Roelofs | Libpng | 1.2.7rc1 |
| Greg Roelofs | Libpng | 1.2.8 |
| Greg Roelofs | Libpng | 1.2.9 |
| Greg Roelofs | Libpng | 1.2.10 |
| Greg Roelofs | Libpng | 1.2.11 |
| Greg Roelofs | Libpng | 1.2.12 |
References
- http://secunia.com/advisories/22889Patch, Vendor Advisory
- http://secunia.com/advisories/22900Patch, Vendor Advisory
- http://secunia.com/advisories/22941Vendor Advisory
- http://secunia.com/advisories/22950Vendor Advisory
- http://secunia.com/advisories/22951Vendor Advisory
- http://secunia.com/advisories/22956Patch, Vendor Advisory
- http://secunia.com/advisories/22958Patch, Vendor Advisory
- http://secunia.com/advisories/23208Vendor Advisory
- http://secunia.com/advisories/23335Vendor Advisory
- http://secunia.com/advisories/25329Vendor Advisory
- http://secunia.com/advisories/25742Vendor Advisory
- http://secunia.com/advisories/29420Vendor Advisory
- http://security.gentoo.org/glsa/glsa-200611-09.xmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2006/4521Vendor Advisory
- http://www.vupen.com/english/advisories/2006/4568Vendor Advisory
- http://www.vupen.com/english/advisories/2008/0924/referencesVendor Advisory
- http://secunia.com/advisories/22889Patch, Vendor Advisory
- http://secunia.com/advisories/22900Patch, Vendor Advisory
- http://secunia.com/advisories/22941Vendor Advisory
- http://secunia.com/advisories/22950Vendor Advisory
- http://secunia.com/advisories/22951Vendor Advisory
- http://secunia.com/advisories/22956Patch, Vendor Advisory
- http://secunia.com/advisories/22958Patch, Vendor Advisory
- http://secunia.com/advisories/23208Vendor Advisory
- http://secunia.com/advisories/23335Vendor Advisory
- http://secunia.com/advisories/25329Vendor Advisory
- http://secunia.com/advisories/25742Vendor Advisory
- http://secunia.com/advisories/29420Vendor Advisory
- http://security.gentoo.org/glsa/glsa-200611-09.xmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2006/4521Vendor Advisory
- http://www.vupen.com/english/advisories/2006/4568Vendor Advisory
- http://www.vupen.com/english/advisories/2008/0924/referencesVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2006-5793?
How severe is CVE-2006-5793?
How do I fix CVE-2006-5793?
Are you affected by CVE-2006-5793?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST