CVE-2015-8126

Published: 12 November 2015

Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image.

Priority

Medium

Status

Package Release Status
chromium-browser
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [uses system libpng])
firefox
Launchpad, Ubuntu, Debian
Upstream Not vulnerable
(see note)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [see note])
libpng
Launchpad, Ubuntu, Debian
Upstream
Released (1.6.19, 1.5.24, 1.4.17, 1.2.54, 1.0.64)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (1.2.50-1ubuntu2.14.04.1)
Patches:
Upstream: https://github.com/glennrp/libpng/commit/475bab6170f651b9863e9fc1b8ffd6cd89a45aa0
Upstream: https://github.com/glennrp/libpng/commit/3939689e7d9d06ee05411210bc8e605adcff294e
Upstream: https://github.com/glennrp/libpng/commit/216dbf7f7eef5d999f2e3ba054407917098e9f85
openjdk-6
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [uses system libpng])
openjdk-7
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [uses system libpng])
openjdk-8
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

thunderbird
Launchpad, Ubuntu, Debian
Upstream Not vulnerable
(see note)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [see note])