CVE-2008-3964

Multiple off-by-one errors in libpng before 1.2.32beta01, and 1.4 before 1.4.0beta34, allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a PNG image with crafted zTXt chunks, related to (1) the png_push_read_zTXt function in pngread.c, and possibly related to (2) pngtest.c.

Published: Sep 11, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-3964
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-193

Affected Software
References

Software	From	Fixed in
libpng / libpng	1.4.0-beta21	1.4.0-beta21.x
libpng / libpng	1.4.0-beta32	1.4.0-beta32.x
libpng / libpng	1.4.0-beta2	1.4.0-beta2.x
libpng / libpng	1.4.0-beta3	1.4.0-beta3.x
libpng / libpng	1.4.0-beta4	1.4.0-beta4.x
libpng / libpng	1.4.0-beta5	1.4.0-beta5.x
libpng / libpng	1.4.0-beta6	1.4.0-beta6.x
libpng / libpng	1.4.0-beta7	1.4.0-beta7.x
libpng / libpng	1.4.0-beta8	1.4.0-beta8.x
libpng / libpng	1.4.0-beta9	1.4.0-beta9.x
libpng / libpng	1.4.0-beta10	1.4.0-beta10.x
libpng / libpng	1.4.0-beta11	1.4.0-beta11.x
libpng / libpng	1.4.0-beta12	1.4.0-beta12.x
libpng / libpng	1.4.0-beta13	1.4.0-beta13.x
libpng / libpng	1.4.0-beta14	1.4.0-beta14.x
libpng / libpng	1.4.0-beta15	1.4.0-beta15.x
libpng / libpng	1.4.0-beta16	1.4.0-beta16.x
libpng / libpng	1.4.0-beta17	1.4.0-beta17.x
libpng / libpng	1.4.0-beta18	1.4.0-beta18.x
libpng / libpng	1.4.0-beta19	1.4.0-beta19.x
libpng / libpng	1.4.0-beta20	1.4.0-beta20.x
libpng / libpng	1.4.0-beta22	1.4.0-beta22.x
libpng / libpng	1.4.0-beta23	1.4.0-beta23.x
libpng / libpng	1.4.0-beta24	1.4.0-beta24.x
libpng / libpng	1.4.0-beta25	1.4.0-beta25.x
libpng / libpng	1.4.0-beta26	1.4.0-beta26.x
libpng / libpng	1.4.0-beta27	1.4.0-beta27.x
libpng / libpng	1.4.0-beta28	1.4.0-beta28.x
libpng / libpng	1.4.0-beta29	1.4.0-beta29.x
libpng / libpng	1.4.0-beta30	1.4.0-beta30.x
libpng / libpng	1.4.0-beta31	1.4.0-beta31.x
libpng / libpng	1.4.0-beta33	1.4.0-beta33.x
libpng / libpng	1.4.0-beta1	1.4.0-beta1.x
libpng / libpng	-	1.2.32

Vulnerability Database

289,689

CVE-2008-3964