Vulnerability Details : CVE-2015-7981
The png_convert_to_rfc1123 function in png.c in libpng 1.0.x before 1.0.64, 1.2.x before 1.2.54, and 1.4.x before 1.4.17 allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read.
Vulnerability category: Information leak
Exploit prediction scoring system (EPSS) score for CVE-2015-7981
Probability of exploitation activity in the next 30 days: 1.20%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 83 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2015-7981
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2015-7981
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-7981
-
http://www.openwall.com/lists/oss-security/2015/10/26/3
oss-security - Re: CVE Requests for read out of bound in libpng
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172647.html
[SECURITY] Fedora 22 Update: libpng10-1.0.64-1.fc22
-
http://www.ubuntu.com/usn/USN-2815-1
USN-2815-1: libpng vulnerabilities | Ubuntu security notices
-
http://sourceforge.net/projects/libpng/files/libpng12/1.2.54/
LIBPNG: PNG reference library - Browse Files at SourceForge.netPatch
-
http://sourceforge.net/p/libpng/bugs/241/
LIBPNG: PNG reference library / Bugs / #241 a out of bound read in libpng 1.2.*-1.2.53 and libpng 1.4.*
-
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
Oracle Solaris Bulletin - July 2016
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172620.html
[SECURITY] Fedora 23 Update: libpng10-1.0.64-1.fc23
-
http://sourceforge.net/projects/libpng/files/libpng10/1.0.64/
LIBPNG: PNG reference library - Browse Files at SourceForge.net
-
http://sourceforge.net/projects/libpng/files/libpng14/1.4.17/
LIBPNG: PNG reference library - Browse Files at SourceForge.netExploit
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172663.html
[SECURITY] Fedora 21 Update: libpng10-1.0.64-1.fc21
-
https://security.gentoo.org/glsa/201611-08
libpng: Multiple vulnerabilities (GLSA 201611-08) — Gentoo security
-
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
Oracle Linux Bulletin - October 2015
-
http://www.openwall.com/lists/oss-security/2015/10/26/1
oss-security - CVE Requests for read out of bound in libpng
-
https://access.redhat.com/errata/RHSA-2016:1430
RHSA-2016:1430 - Security Advisory - Red Hat Customer Portal
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00033.html
[security-announce] openSUSE-SU-2015:2099-1: important: Security update
-
http://rhn.redhat.com/errata/RHSA-2015-2594.html
RHSA-2015:2594 - Security Advisory - Red Hat Customer Portal
-
http://lists.opensuse.org/opensuse-updates/2015-11/msg00160.html
openSUSE-SU-2015:2136-1: moderate: Security update for libpng12
-
http://www.securityfocus.com/bid/77304
libpng 'png_convert_to_rfc1123()' Function Out Of Bounds Read Memory Corruption Vulnerability
-
http://www.securitytracker.com/id/1034393
libpng File Processing Buffer Overflow in png_convert_to_rfc1123() Lets Remote Users Execute Arbitrary Code - SecurityTracker
-
http://www.debian.org/security/2015/dsa-3399
Debian -- Security Information -- DSA-3399-1 libpng
-
http://rhn.redhat.com/errata/RHSA-2015-2595.html
RHSA-2015:2595 - Security Advisory - Red Hat Customer Portal
Products affected by CVE-2015-7981
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7.z:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.52:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.50:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.29:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.26:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.19:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.18:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.46:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.48:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.30:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.31:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.53:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.51:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.27:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.25:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.37:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.38:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.33:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.41:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.45:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.42:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.23:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.24:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.21:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.22:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.34:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.20:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.35:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.17:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.47:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.44:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.43:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.13:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.32:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.54:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.39:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.40:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.28:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.15:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.26:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.22:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.24:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.23:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.25:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.21:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.20:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.28:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.31:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.18:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.17:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.32:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.27:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.30:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.33:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.19:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.29:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.34:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.57:rc01:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.56:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.58:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.57:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.55:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.56:devel:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.55:rc01:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.48:betas:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.47:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.43:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.43:devel:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.35:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.46:devel:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.45:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.40:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.39:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.38:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.48:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.45:devel:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.44:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.37:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.36:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.47:beta:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.46:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.42:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.41:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.10:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.9:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.7:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.59:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.60:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.12:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.13:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.63:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.51:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.52:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.16:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.53:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.11:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.61:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.0.62:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.49:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.2.50:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.14:*:*:*:*:*:*:*
- cpe:2.3:a:libpng:libpng:1.4.15:*:*:*:*:*:*:*