CVE-2008-1670

Published: 28 April 2008

Heap-based buffer overflow in the progressive PNG Image loader (decoders/pngloader.cpp) in KHTML in KDE 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted image.

Notes

Author	Note
mdeslaur	reproducer in RH bug

Priority

Status

Package	Release	Status
kde4libs Launchpad, Ubuntu, Debian	dapper	Does not exist
	feisty	Ignored (end of life, was needed)
	gutsy	Ignored (end of life, was needed)
	hardy	Not vulnerable (4:4.0.3-0ubuntu5.2)
	intrepid	Not vulnerable (4:4.1.4-0ubuntu1~intrepid1.1)
	jaunty	Not vulnerable (4:4.2.2-0ubuntu5)
	upstream	Needs triage
	Patches: upstream: ftp://ftp.kde.org/pub/kde/security_patches/post-kde-4.0.3-khtml.diff

References

http://www.kde.org/info/security/advisory-20080426-1.txt
https://www.cve.org/CVERecord?id=CVE-2008-1670
NVD
Launchpad
Debian

Bugs

http://bugs.kde.org/show_bug.cgi?id=156623
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-1670
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478283

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›