Launchpad CVE tracker

CVE 2004-0597

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

Related bugs and status

CVE-2004-0597 (Candidate) is related to these bugs:

Bug #7306: [CAN-2004-0597, CAN-2004-0598, CAN-2004-0599] stack-based buffer overflow and other code concerns

Summary				In	Importance	Status
	7306	[CAN-2004-0597, CAN-2004-0598, CAN-2004-0599] stack-based buffer overflow and other code concerns		libpng (Ubuntu)	High	Invalid
	7306	[CAN-2004-0597, CAN-2004-0598, CAN-2004-0599] stack-based buffer overflow and other code concerns		libpng (Debian)	Unknown	Fix Released

Bug #7309: mozilla-browser: [CAN-2004-0597] libpng vulnerability also affects mozilla

Summary				In	Importance	Status
	7309	mozilla-browser: [CAN-2004-0597] libpng vulnerability also affects mozilla		mozilla (Ubuntu)	High	Invalid
	7309	mozilla-browser: [CAN-2004-0597] libpng vulnerability also affects mozilla		mozilla (Debian)	Unknown	Fix Released

Bug #7359: New upstream release fixes png handling vulnerabilities

Summary				In	Importance	Status
	7359	New upstream release fixes png handling vulnerabilities		imagemagick (Ubuntu)	High	Invalid
	7359	New upstream release fixes png handling vulnerabilities		imagemagick (Debian)	Unknown	Fix Released

Bug #7904: multiple libpng vulnerabilities

Summary				In	Importance	Status
	7904	multiple libpng vulnerabilities		Ubuntu	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2004-0597

References