Note: This is an archival copy of Security Sun Alert 269788 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1021043.1.
Solaris 8 Operating System
Solaris 9 Operating System
Solaris 10 Operating System
Date of Workaround Release
Multiple security vulnerabilities in libpng(3):
Multiple security vulnerabilities in libpng(3), which is shipped with Solaris, may allow a local or remote unprivileged user to disclose potentially sensitive information associated with applications linked to libpng(3), when a user has loaded a specially crafted Portable Network Graphics (PNG) format image file (.png) supplied by an untrusted user.
These issues are also described in the following document:
CVE-2009-2042 at: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042
2. Contributing Factors
These issues can occur in the following releases:
$ ldd /bin/evince | grep libpngHowever, some applications may use libpng(3) but not report libpng(3) as a dynamic dependency with ldd(1) if the library is loaded by dlopen(3C). Therefore, to display all shared objects used by an application, pldd(1) should be used against the running process:
$ pldd <pid of application> | grep libpngNote 2: OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. To determine the base build of OpenSolaris, the following command can be used:
$ uname -v3. Symptoms
There are no predictable symptoms that would indicate the described issues have been exploited.
To work around the described issues , do not load PNG files from untrusted sources (or to be completely safe, do not view any PNG files).
These issues are addressed in the following releases:
For more information on Security Sun Alerts, see 1009886.1.
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
10-Nov-2009: Updated Contributing Factors and Resolution sections.
This solution has no attachment