CVE-2015-8472
Publication date 9 December 2015
Last updated 24 July 2024
Ubuntu priority
Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x before 1.6.20 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8126.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| chromium-browser | ||
| 14.04 LTS trusty | Not in release | |
| firefox | ||
| 14.04 LTS trusty | Not in release | |
| libpng | ||
| 14.04 LTS trusty |
Fixed 1.2.50-1ubuntu2.14.04.2
|
|
| openjdk-6 | ||
| 14.04 LTS trusty | Not in release | |
| openjdk-7 | ||
| 14.04 LTS trusty | Not in release | |
| openjdk-8 | ||
| 14.04 LTS trusty | Not in release | |
| thunderbird | ||
| 14.04 LTS trusty | Not in release | |
Notes
seth-arnold
Incomplete fix for CVE-2015-8126
chriscoulson
firefox and thunderbird are not-affected since they don't use png_set_PLTE, see https://bugzilla.mozilla.org/show_bug.cgi?id=1224244#c0)
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.3 · High
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | Low |
| Integrity impact | Low |
| Availability impact | Low |
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
References
Related Ubuntu Security Notices (USN)
- USN-2861-1
- libpng vulnerabilities
- 6 January 2016