Vulnerability Details : CVE-2013-6954
Potential exploit
The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.
Vulnerability category: Memory CorruptionDenial of service
Products affected by CVE-2013-6954
- cpe:2.3:a:libpng:libpng:*:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.4:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.7:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.2:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.3:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.0:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.1:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.6.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-6954
6.13%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-6954
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2013-6954
-
http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127947.html
[SECURITY] Fedora 19 Update: libpng10-1.0.60-6.fc19
-
https://bugzilla.redhat.com/show_bug.cgi?id=1045561
1045561 – (CVE-2013-6954) CVE-2013-6954 libpng: unhandled zero-length PLTE chunk or NULL palette
-
http://www-01.ibm.com/support/docview.wss?uid=swg21672080
IBM Security Bulletin: InfoSphere Streams is possibly affected by vulnerabilities in the IBM® SDK, Java™ Technology Edition (CVE-2014-0453 and CVE-2014-0460)
-
http://marc.info/?l=bugtraq&m=140852886808946&w=2
'[security bulletin] HPSBUX03091 SSRT101667 rev.1 - HP-UX running Java7, Remote Unauthorized Access, ' - MARC
-
https://access.redhat.com/errata/RHSA-2014:0414
RHSA-2014:0414 - Security Advisory - Red Hat Customer Portal
-
http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
Oracle Critical Patch Update - April 2014
-
https://www.ibm.com/support/docview.wss?uid=swg21675973
IBM Security Bulletin: Multiple vulnerabilities in IBM SDK for Java included with IBM Forms Viewer
-
http://advisories.mageia.org/MGASA-2014-0075.html
Mageia Advisory: MGASA-2014-0075 - Updated libpng and libpng12 packages fix security vulnerability
-
http://www.mandriva.com/security/advisories?name=MDVSA-2014:035
mandriva.com
-
http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128114.html
[SECURITY] Fedora 19 Update: libpng12-1.2.50-4.fc19
-
http://sourceforge.net/projects/libpng/files/libpng16/1.6.8/
LIBPNG: PNG reference library - Browse Files at SourceForge.netPatch
-
http://www.libpng.org/pub/png/libpng.html
libpng Home Page
-
http://secunia.com/advisories/59058
Sign in
-
http://secunia.com/advisories/58974
Sign in
-
http://marc.info/?l=bugtraq&m=140852974709252&w=2
'[security bulletin] HPSBUX03092 SSRT101668 rev.1 - HP-UX running Java6, Remote Unauthorized Access, ' - MARC
-
http://www.securityfocus.com/bid/64493
libpng 'png_read_transform_info()' Function NULL Pointer Dereference Denial of Service Vulnerability
-
https://access.redhat.com/errata/RHSA-2014:0413
RHSA-2014:0413 - Security Advisory - Red Hat Customer Portal
-
http://www-01.ibm.com/support/docview.wss?uid=swg21676746
IBM Security Bulletin: IBM Lotus Expeditor fixes for multiple vulnerabilities in IBM JRE
-
http://lists.fedoraproject.org/pipermail/package-announce/2014-February/127952.html
[SECURITY] Fedora 20 Update: libpng10-1.0.60-6.fc20
-
http://sourceforge.net/p/libpng/code/ci/1faa6ff32c648acfe3cf30a58d31d7aebc24968c
LIBPNG: PNG reference library / Code / Commit [1faa6f]Exploit;Patch
-
http://lists.opensuse.org/opensuse-updates/2014-01/msg00071.html
openSUSE-SU-2014:0100-1: moderate: update for libpng16
-
http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128099.html
[SECURITY] Fedora 20 Update: libpng12-1.2.50-6.fc20
-
http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128098.html
[SECURITY] Fedora 20 Update: libpng15-1.5.17-2.fc20
-
http://security.gentoo.org/glsa/glsa-201406-32.xml
IcedTea JDK: Multiple vulnerabilities (GLSA 201406-32) — Gentoo security
-
http://www.kb.cert.org/vuls/id/650142
VU#650142 - libpng 1.6.1 through 1.6.7 contain a null-pointer dereference vulnerabilityUS Government Resource
Jump to