CVE-2014-0333 — Infinite Loop in Libpng

CWE-1899 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 26.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libpng

Timeline

PublishedFeb 27

Latest updateMay 17

Description

The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDlibpng/libpng10 versions+9

Patches

Patch: ftp.simplesystems.org ↗Patch: www.kb.cert.org ↗Patch: ftp.simplesystems.org ↗

🔴Vulnerability Details

GHSA

GHSA-fpgr-xxq4-wvw4: The png_push_read_chunk function in pngpread↗2022-05-17

▶

CVEList

CVE-2014-0333: The png_push_read_chunk function in pngpread↗2014-02-27

▶

OSV

CVE-2014-0333: The png_push_read_chunk function in pngpread↗2014-02-27

▶

📋Vendor Advisories

Red Hat

libpng: denial of service via png_push_read_chunk()↗2014-02-25

▶

Debian

CVE-2014-0333: libpng1.6 - The png_push_read_chunk function in pngpread.c in the progressive decoder in lib...↗2014

▶

💬Community

Bugzilla

CVE-2014-0333 libpng: denial of service via png_push_read_chunk()↗2014-02-27

▶

Bugzilla

CVE-2014-0333 mingw-libpng: libpng: denial of service via png_push_read_chunk() [fedora-20]↗2014-02-27

▶

Bugzilla

CVE-2014-0333 libpng: denial of service via png_push_read_chunk() [fedora-20]↗2014-02-27

▶