CVE-2011-2691
Last modified
CVE-2011-2691 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.. EPSS estimates a 3.73% chance of exploitation in the next 30 days.
Description
The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Libpng | Libpng | >= 1.0.0, < 1.0.55 |
| Libpng | Libpng | >= 1.2.0, < 1.2.45 |
| Libpng | Libpng | >= 1.4.0, < 1.4.8 |
| Libpng | Libpng | >= 1.5.0, < 1.5.4 |
| Fedoraproject | Fedora | 14 |
| Debian | Debian Linux | 5.0 |
| Debian | Debian Linux | 6.0 |
References
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063118.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=133951357207000&w=2Mailing List, Third Party Advisory
- http://secunia.com/advisories/45046Broken Link
- http://secunia.com/advisories/45405Broken Link
- http://secunia.com/advisories/45492Broken Link
- http://secunia.com/advisories/49660Broken Link
- http://security.gentoo.org/glsa/glsa-201206-15.xmlThird Party Advisory
- http://support.apple.com/kb/HT5002Third Party Advisory
- http://www.debian.org/security/2011/dsa-2287Third Party Advisory
- http://www.libpng.org/pub/png/libpng.htmlProduct, Vendor Advisory
- http://www.openwall.com/lists/oss-security/2011/07/13/2Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/48660Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=720608Exploit, Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68537Third Party Advisory, VDB Entry
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063118.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=133951357207000&w=2Mailing List, Third Party Advisory
- http://secunia.com/advisories/45046Broken Link
- http://secunia.com/advisories/45405Broken Link
- http://secunia.com/advisories/45492Broken Link
- http://secunia.com/advisories/49660Broken Link
- http://security.gentoo.org/glsa/glsa-201206-15.xmlThird Party Advisory
- http://support.apple.com/kb/HT5002Third Party Advisory
- http://www.debian.org/security/2011/dsa-2287Third Party Advisory
- http://www.libpng.org/pub/png/libpng.htmlProduct, Vendor Advisory
- http://www.openwall.com/lists/oss-security/2011/07/13/2Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/48660Third Party Advisory, VDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=720608Exploit, Issue Tracking, Patch, Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68537Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2011-2691?
How severe is CVE-2011-2691?
How do I fix CVE-2011-2691?
Are you affected by CVE-2011-2691?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST