CVE-2008-6218

Impact:
Low
Public Date:
2008-10-27
CWE:
CWE-401
Bugzilla:
468990: CVE-2008-6218 libpng: "png_handle_tEXt()" memory leak vulnerability - DoS (memory exhaustion) via a crafted PNG file.

The MITRE CVE dictionary describes this issue as:

Memory leak in the png_handle_tEXt function in pngrutil.c in libpng before 1.2.33 rc02 and 1.4.0 beta36 allows context-dependent attackers to cause a denial of service (memory exhaustion) via a crafted PNG file.

Find out more about CVE-2008-6218 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

We do not consider a crash of a client application linked to libpng to be a security issue. None of the applications that use libpng are at any risk of causing a denial of service in a meaningful way.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.