[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Sun] Schwachstelle in der Solaris Bibliothek libpng - 269788
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Liebe Kolleginnen und Kollegen,
soeben erreichte uns nachfolgendes Sun Security Advisory. Wir geben
diese Informationen unveraendert an Sie weiter.
CVE-2009-2042 - Schwachstelle in der Bibliothek libpng beim Parsen von
1-Bit Interlaced Bildern
Beim Einlesen von 1-Bit (2 Farben) Interlaced PNG-Bildern, deren
Breite kein Vielfaches von 8 Pixeln ist, koennen von der Bibliothek
nicht initialisierte Speicherbereiche an die Anwendung weitergegeben
werden, welche die Bibliothek verwendet. Dies kann unter Umstaenden
dazu fuehren, das diese Daten angezeigt oder weiterverarbeitet werden.
Ein Angreifer kann so unter Umstaenden an vertrauliche Daten gelangen.
Betroffen sind die folgenden Software Pakete und Plattformen:
libpng
SPARC Plattform
* GNOME 2.0 (fuer Solaris 8)
* Solaris 9
* Solaris 10
* OpenSolaris builds snv_01 bis snv_123
x86 Plattform
* GNOME 2.0 (fuer Solaris 8)
* Solaris 9
* Solaris 10
* OpenSolaris builds snv_01 bis snv_123
Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.
Hersteller Advisory:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-269788-1
(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.
Mit freundlichen Gruessen,
Detlev O. Matthies
- --
Detlev O. Matthies, M.Sc. (Incident Response Team)
DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-555
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski
Automatische Warnmeldungen https://www.cert.dfn.de/autowarn
Solution Type Sun Alert
Solution 269788 : Security Vulnerability in Solaris libpng(3) May
Allow a Remote User to Disclose Potentially Sensitive Information from
Applications Linked to libpng(3)
Related Categories
* Home>Content>Sun Alert Criteria Categories>Security
* Home>Content>Sun Alert Release Phase>Workaround
Bug ID
6874973
Product
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
OpenSolaris
Date of Workaround Release
14-Oct-2009
SA Document Body
Multiple security vulnerabilities in libpng(3):
1. Impact
Multiple security vulnerabilities in libpng(3), which is shipped with
Solaris, may allow a local or remote unprivileged user to disclose
potentially sensitive information associated with applications linked
to libpng(3), when a user has loaded a specially crafted Portable
Network Graphics (PNG) format image file (.png) supplied by an
untrusted user.
These issues are also described in the following document:
CVE-2009-2042 at:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042
2. Contributing Factors
These issues can occur in the following releases:
SPARC Platform
* GNOME 2.0 (for Solaris 8)
* Solaris 9
* Solaris 10
* OpenSolaris builds snv_01 through snv_123
x86 Platform
* GNOME 2.0 (for Solaris 8)
* Solaris 9
* Solaris 10
* OpenSolaris builds snv_01 through snv_123
Note 1: To determine if an application has a dynamic dependency on the
libpng(3) library, the ldd(1) utility can be used:
$ ldd /bin/evince | grep libpng
libpng12.so.0 => /usr/lib/libpng12.so.0
However, some applications may use libpng(3) but not report libpng(3)
as a dynamic dependency with ldd(1) if the library is loaded by
dlopen(3C). Therefore, to display all shared objects used by an
application, pldd(1) should be used against the running process:
$ pldd <pid of application> | grep libpng
/usr/lib/libpng12.so.0.35.0
Note 2: OpenSolaris distributions may include additional bug fixes
above and beyond the build from which it was derived. To determine the
base build of OpenSolaris, the following command can be used:
$ uname -v
snv_86
3. Symptoms
There are no predictable symptoms that would indicate the described
issues have been exploited.
4. Workaround
To work around the described issues , do not load PNG files from
untrusted sources (or to be completely safe, do not view any PNG
files).
5. Resolution
These issues are addressed in the following releases:
SPARC Platform
* OpenSolaris based upon builds snv_124 or later
x86 Platform
* OpenSolaris based upon builds snv_124 or later
A final resolution is pending completion.
For more information on Security Sun Alerts, see Technical Instruction
ID 213557.
This Sun Alert notification is being provided to you on an "AS IS"
basis. This Sun Alert notification may contain information provided by
third parties. The issues described in this Sun Alert notification may
or may not impact your system(s). Sun makes no representations,
warranties, or guarantees as to the information contained herein. ANY
AND ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION
WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR
NON-INFRINGEMENT, ARE HEREBY DISCLAIMED. BY ACCESSING THIS DOCUMENT YOU
ACKNOWLEDGE THAT SUN SHALL IN NO EVENT BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES THAT ARISE OUT
OF YOUR USE OR FAILURE TO USE THE INFORMATION CONTAINED HEREIN. This
Sun Alert notification contains Sun proprietary and confidential
information. It is being provided to you pursuant to the provisions of
your agreement to purchase services from Sun, or, if you do not have
such an agreement, the Sun.com Terms of Use. This Sun Alert
notification may only be used for the purposes contemplated by these
agreements.
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa
Clara, CA 95054 U.S.A. All rights reserved.
Attachments
This solution has no attachment
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iD8DBQFK3Xu+k0kIxZMiiQ8RAkRWAJsFV02/e5lMJm6gra5TOBdKTkj3WwCgz0cb
hEiPevO7A/H8P2AuqHFN3Nk=
=Y8nU
-----END PGP SIGNATURE-----