Note: This is an archival copy of Security Sun Alert 200871 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000660.1.
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
Date of Workaround Release
A remote unprivileged user may be able to crash an application which dynamically links to the Portable Network Graphics library (see below for details) :
A remote unprivileged user may be able to crash an application which dynamically links to the Portable Network Graphics library (libpng(3)) due to a security vulnerability in libpng(3). The ability to crash an application is a type of Denial of Service (DoS). A number of applications which comprise the GNOME desktop environment dynamically link with libpng(3).
This issue is described in the following documents:
This issue can occur in the following releases:
To determine if JDS release 2 is installed on a Solaris 9 x86 system, the following command can be run:
% grep distributor-version /usr/share/gnome-about/gnome-version.xml <distributor-version>Sun Java Desktop System, Release 2</distributor-version>3. Symptoms
If the described issue occurs, the application which links to the libpng(3) library will exit and may generate an error message about a Segmentation Fault and may also write a core(4) file.4. Workaround
To work around the described issue, only load images from trusted sources.5. Resolution
This issue is addressed in the following releases:
Copyright 2000-2008 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
11-Feb-2008: Updated Contributing Factors and Resolution sections
23-May-2008: Updated for minor clarifications
02-Sep-2008: Updated Contributing Factors and Resolution sections
16-Oct-2008: Updated Contributing Factors and Resolution sections
This solution has no attachment