CVE-2010-1205
CRITICALCVSS 9.8/10EPSS 43.38%
Last modified
CVE-2010-1205 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.. EPSS estimates a 43.38% chance of exploitation in the next 30 days.
Description
Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Libpng | Libpng | < 1.2.44 | — |
| Libpng | Libpng | >= 1.4.0, < 1.4.3 | — |
| Chrome | < 5.0.375.99 | — | |
| Apple | Itunes | < 10.2 | — |
| Apple | Safari | < 5.0.4 | — |
| Apple | Iphone Os | >= 2.0, <= 4.1 | — |
| Apple | Mac Os X | >= 10.6.0, < 10.6.4 | — |
| Apple | Mac Os X Server | >= 10.6.0, < 10.6.4 | — |
| Fedoraproject | Fedora | 12 | — |
| Fedoraproject | Fedora | 13 | — |
| Opensuse | Opensuse | 11.1 | — |
| Opensuse | Opensuse | 11.2 | — |
| Suse | Linux Enterprise Server | 9 | — |
| Suse | Linux Enterprise Server | 10 | Sp3 |
| Suse | Linux Enterprise Server | 11 | — |
| Vmware | Player | >= 2.5, < 2.5.5 | — |
| Vmware | Player | >= 3.1, < 3.1.2 | — |
| Vmware | Workstation | >= 6.5.0, < 6.5.5 | — |
| Vmware | Workstation | >= 7.1, < 7.1.2 | — |
| Canonical | Ubuntu Linux | 6.06 | — |
| Canonical | Ubuntu Linux | 8.04 | — |
| Canonical | Ubuntu Linux | 9.04 | — |
| Canonical | Ubuntu Linux | 9.10 | — |
| Canonical | Ubuntu Linux | 10.04 | — |
| Debian | Debian Linux | 5.0 | — |
| Mozilla | Firefox | < 3.5.11 | — |
| Mozilla | Firefox | >= 3.5.12, < 3.6.7 | — |
| Mozilla | Seamonkey | < 2.0.6 | — |
| Mozilla | Thunderbird | < 3.0.6 | — |
| Mozilla | Thunderbird | >= 3.0.7, < 3.1.1 | — |
References
- http://blackberry.com/btsc/KB27244Broken Link
- http://code.google.com/p/chromium/issues/detail?id=45983Exploit, Issue Tracking, Mailing List, Third Party Advisory
- http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.htmlRelease Notes, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlMailing List, Third Party Advisory
- http://lists.vmware.com/pipermail/security-announce/2010/000105.htmlMailing List, Patch, Third Party Advisory
- http://secunia.com/advisories/40302Broken Link
- http://secunia.com/advisories/40336Broken Link
- http://secunia.com/advisories/40472Broken Link
- http://secunia.com/advisories/40547Broken Link
- http://secunia.com/advisories/41574Broken Link
- http://secunia.com/advisories/42314Broken Link
- http://secunia.com/advisories/42317Broken Link
- http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061Mailing List, Patch, Third Party Advisory
- http://support.apple.com/kb/HT4312Third Party Advisory
- http://support.apple.com/kb/HT4435Broken Link
- http://support.apple.com/kb/HT4456Third Party Advisory
- http://support.apple.com/kb/HT4457Third Party Advisory
- http://support.apple.com/kb/HT4554Third Party Advisory
- http://support.apple.com/kb/HT4566Broken Link
- http://trac.webkit.org/changeset/61816Patch, Third Party Advisory
- http://www.debian.org/security/2010/dsa-2072Third Party Advisory
- http://www.libpng.org/pub/png/libpng.htmlProduct, Vendor Advisory
- http://www.mozilla.org/security/announce/2010/mfsa2010-41.htmlThird Party Advisory
- http://www.securityfocus.com/bid/41174Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-960-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2010-0014.htmlPatch, Third Party Advisory
- https://bugs.webkit.org/show_bug.cgi?id=40798Permissions Required, Third Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=570451Exploit, Issue Tracking, Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=608238Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59815Third Party Advisory, VDB Entry
- http://blackberry.com/btsc/KB27244Broken Link
- http://code.google.com/p/chromium/issues/detail?id=45983Exploit, Issue Tracking, Mailing List, Third Party Advisory
- http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.htmlRelease Notes, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.htmlMailing List, Third Party Advisory
- http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlMailing List, Third Party Advisory
- http://lists.vmware.com/pipermail/security-announce/2010/000105.htmlMailing List, Patch, Third Party Advisory
- http://secunia.com/advisories/40302Broken Link
- http://secunia.com/advisories/40336Broken Link
- http://secunia.com/advisories/40472Broken Link
- http://secunia.com/advisories/40547Broken Link
- http://secunia.com/advisories/41574Broken Link
- http://secunia.com/advisories/42314Broken Link
- http://secunia.com/advisories/42317Broken Link
- http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061Mailing List, Patch, Third Party Advisory
- http://support.apple.com/kb/HT4312Third Party Advisory
- http://support.apple.com/kb/HT4435Broken Link
- http://support.apple.com/kb/HT4456Third Party Advisory
- http://support.apple.com/kb/HT4457Third Party Advisory
- http://support.apple.com/kb/HT4554Third Party Advisory
- http://support.apple.com/kb/HT4566Broken Link
- http://trac.webkit.org/changeset/61816Patch, Third Party Advisory
- http://www.debian.org/security/2010/dsa-2072Third Party Advisory
- http://www.libpng.org/pub/png/libpng.htmlProduct, Vendor Advisory
- http://www.mozilla.org/security/announce/2010/mfsa2010-41.htmlThird Party Advisory
- http://www.securityfocus.com/bid/41174Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-960-1Third Party Advisory
- http://www.vmware.com/security/advisories/VMSA-2010-0014.htmlPatch, Third Party Advisory
- https://bugs.webkit.org/show_bug.cgi?id=40798Permissions Required, Third Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=570451Exploit, Issue Tracking, Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=608238Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59815Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-1205?
Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
How severe is CVE-2010-1205?
CVE-2010-1205 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 43.38% probability of exploitation in the next 30 days.
How do I fix CVE-2010-1205?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2010-1205?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST