Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-0040

The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit gamma tables.

Security Impact Summary

CVE-2009-0040 is a security vulnerability that . Impacting 9 products from libpng, from apple, from apple and 6 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Originally identified in 2009, this vulnerability predates many modern security frameworks and practices. The vulnerability landscape of that era was characterized by different threat models and less mature defense mechanisms compared to contemporary standards.

Published

2009-02-22T22:30:00.203

Last Modified

2026-04-23T00:35:47.467

Status

Modified

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

6.4

Weaknesses

Type: Primary
CWE-824

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	libpng	libpng	< 1.0.43	Yes
Application	libpng	libpng	< 1.2.35	Yes
Operating System	apple	iphone_os	< 3.0	Yes
Operating System	apple	mac_os_x	< 10.5.8	Yes
Operating System	opensuse	opensuse	10.3	Yes
Operating System	opensuse	opensuse	11.0	Yes
Operating System	opensuse	opensuse	11.1	Yes
Operating System	suse	linux_enterprise	9.0	Yes
Operating System	suse	linux_enterprise	10.0	Yes
Operating System	suse	linux_enterprise_desktop	10	Yes
Operating System	suse	linux_enterprise_server	10	Yes
Operating System	debian	debian_linux	4.0	Yes
Operating System	debian	debian_linux	5.0	Yes
Operating System	fedoraproject	fedora	9	Yes
Operating System	fedoraproject	fedora	10	Yes

References

ftp://ftp.simplesystems.org/pub/png/src/libpng-1.2.34-ADVISORY.txt Broken Link, Vendor Advisory ([email protected])
http://downloads.sourceforge.net/libpng/libpng-1.2.34-ADVISORY.txt Product ([email protected])
http://lists.apple.com/archives/security-announce/2009/Aug/msg00001.html Mailing List ([email protected])
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html Mailing List ([email protected])
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html Mailing List ([email protected])
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html Broken Link, Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.html Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.html Mailing List ([email protected])
http://lists.vmware.com/pipermail/security-announce/2009/000062.html Broken Link ([email protected])
http://secunia.com/advisories/33970 Broken Link, Vendor Advisory ([email protected])
http://secunia.com/advisories/33976 Broken Link, Vendor Advisory ([email protected])
http://secunia.com/advisories/34137 Broken Link ([email protected])
http://secunia.com/advisories/34140 Broken Link ([email protected])
http://secunia.com/advisories/34143 Broken Link ([email protected])
http://secunia.com/advisories/34145 Broken Link ([email protected])
http://secunia.com/advisories/34152 Broken Link ([email protected])
http://secunia.com/advisories/34210 Broken Link ([email protected])
http://secunia.com/advisories/34265 Broken Link ([email protected])
http://secunia.com/advisories/34272 Broken Link ([email protected])
http://secunia.com/advisories/34320 Broken Link ([email protected])
http://secunia.com/advisories/34324 Broken Link ([email protected])
http://secunia.com/advisories/34388 Broken Link ([email protected])
http://secunia.com/advisories/34462 Broken Link ([email protected])
http://secunia.com/advisories/34464 Broken Link ([email protected])
http://secunia.com/advisories/35074 Broken Link ([email protected])
http://secunia.com/advisories/35258 Broken Link ([email protected])
http://secunia.com/advisories/35302 Broken Link ([email protected])
http://secunia.com/advisories/35379 Broken Link ([email protected])
http://secunia.com/advisories/35386 Broken Link ([email protected])
http://secunia.com/advisories/36096 Broken Link ([email protected])
http://security.gentoo.org/glsa/glsa-200903-28.xml Third Party Advisory ([email protected])
http://security.gentoo.org/glsa/glsa-201209-25.xml Third Party Advisory ([email protected])
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.405420 Mailing List ([email protected])
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.433952 Mailing List ([email protected])
http://sourceforge.net/mailarchive/message.php?msg_name=e56ccc8f0902181726i200f4bf0n20d919473ec409b7%40mail.gmail.com Broken Link ([email protected])
http://sourceforge.net/project/shownotes.php?group_id=1689&release_id=662441 Broken Link ([email protected])
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259989-1 Broken Link ([email protected])
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020521.1-1 Broken Link ([email protected])
http://support.apple.com/kb/HT3549 Third Party Advisory ([email protected])
http://support.apple.com/kb/HT3613 Third Party Advisory ([email protected])
http://support.apple.com/kb/HT3639 Third Party Advisory ([email protected])
http://support.apple.com/kb/HT3757 Third Party Advisory ([email protected])
http://support.avaya.com/elmodocs2/security/ASA-2009-069.htm Broken Link ([email protected])
http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm Broken Link ([email protected])
http://support.avaya.com/japple/css/japple?temp.documentID=366362&temp.productID=154235&temp.releaseID=361845&temp.bucketID=126655&PAGE=Document Broken Link ([email protected])
http://wiki.rpath.com/Advisories:rPSA-2009-0046 Broken Link ([email protected])
http://www.debian.org/security/2009/dsa-1750 Mailing List ([email protected])
http://www.debian.org/security/2009/dsa-1830 Mailing List ([email protected])
http://www.kb.cert.org/vuls/id/649212 Broken Link, Third Party Advisory, US Government Resource ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2009:051 Broken Link ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2009:075 Broken Link ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2009:083 Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-0315.html Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-0325.html Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-0333.html Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-0340.html Broken Link ([email protected])
http://www.securityfocus.com/archive/1/501767/100/0/threaded Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/archive/1/503912/100/0/threaded Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/archive/1/505990/100/0/threaded Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/33827 Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/33990 Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.us-cert.gov/cas/techalerts/TA09-133A.html Third Party Advisory, US Government Resource ([email protected])
http://www.us-cert.gov/cas/techalerts/TA09-218A.html Third Party Advisory, US Government Resource ([email protected])
http://www.vmware.com/security/advisories/VMSA-2009-0007.html Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2009/0469 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/0473 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/0632 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1297 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1451 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1462 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1522 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1560 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/1621 Broken Link ([email protected])
http://www.vupen.com/english/advisories/2009/2172 Broken Link ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/48819 Third Party Advisory, VDB Entry ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10316 Broken Link ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6458 Broken Link ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00272.html Mailing List ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00412.html Mailing List ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00769.html Mailing List ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00771.html Mailing List ([email protected])
ftp://ftp.simplesystems.org/pub/png/src/libpng-1.2.34-ADVISORY.txt Broken Link, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://downloads.sourceforge.net/libpng/libpng-1.2.34-ADVISORY.txt Product (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Aug/msg00001.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html Broken Link, Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.vmware.com/pipermail/security-announce/2009/000062.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/33970 Broken Link, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/33976 Broken Link, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34137 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34140 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34143 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34145 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34152 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34210 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34265 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34272 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34320 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34324 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34388 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34462 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/34464 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35074 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35258 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35302 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35379 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/35386 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36096 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-200903-28.xml Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://security.gentoo.org/glsa/glsa-201209-25.xml Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.405420 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.433952 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/mailarchive/message.php?msg_name=e56ccc8f0902181726i200f4bf0n20d919473ec409b7%40mail.gmail.com Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/project/shownotes.php?group_id=1689&release_id=662441 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259989-1 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020521.1-1 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3549 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3613 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3639 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT3757 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/elmodocs2/security/ASA-2009-069.htm Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://support.avaya.com/japple/css/japple?temp.documentID=366362&temp.productID=154235&temp.releaseID=361845&temp.bucketID=126655&PAGE=Document Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://wiki.rpath.com/Advisories:rPSA-2009-0046 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2009/dsa-1750 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2009/dsa-1830 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/649212 Broken Link, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2009:051 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2009:075 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2009:083 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-0315.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-0325.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-0333.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-0340.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/501767/100/0/threaded Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/503912/100/0/threaded Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/505990/100/0/threaded Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/33827 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/33990 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.us-cert.gov/cas/techalerts/TA09-133A.html Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.us-cert.gov/cas/techalerts/TA09-218A.html Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.vmware.com/security/advisories/VMSA-2009-0007.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/0469 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/0473 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/0632 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1297 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1451 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1462 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1522 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1560 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/1621 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/2172 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/48819 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10316 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6458 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00272.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00412.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00769.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00771.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For libpng's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.