Candidate: CVE-2011-0408
PublicDate: 2011-01-18 18:03:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0408
 ftp://ftp.simplesystems.org/pub/png-group/src/libpng-1.5.1beta01-README.txt
Description:
 pngrtran.c in libpng 1.5.x before 1.5.1 allows remote attackers to cause a
 denial of service (application crash) or possibly execute arbitrary code
 via a crafted palette-based PNG image that triggers a buffer overflow,
 related to the png_do_expand_palette function, the png_do_rgb_to_gray
 function, and an integer underflow.  NOTE: some of these details are
 obtained from third party information.
Ubuntu-Description:
Notes:
 mdeslaur> libpng 1.5.x only, so not affected
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libpng:
 upstream: ftp://ftp.simplesystems.org/pub/png-group/src/libpng-1.5.1beta01-1.5.0-diff.txt
upstream_libpng: released (1.5.1)
dapper_libpng: not-affected (1.2.8rel-5ubuntu0.6)
hardy_libpng: not-affected (1.2.15~beta5-3ubuntu0.3)
karmic_libpng: not-affected (1.2.37-1ubuntu0.2)
lucid_libpng: not-affected (1.2.42-1ubuntu2.1)
maverick_libpng: not-affected (1.2.44-1)
devel_libpng: not-affected (1.2.44-1ubuntu3)

Patches_firefox:
upstream_firefox: not-affected
dapper_firefox: ignored (reached end-of-life)
hardy_firefox: not-affected
karmic_firefox: DNE
lucid_firefox: not-affected
maverick_firefox: not-affected
devel_firefox: not-affected

Patches_chromium-browser:
upstream_chromium-browser: not-affected
dapper_chromium-browser: DNE
hardy_chromium-browser: DNE
karmic_chromium-browser: DNE
lucid_chromium-browser: not-affected
maverick_chromium-browser: not-affected
devel_chromium-browser: not-affected