CVE-2009-2042

EPSS 3.11% · P87 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-2042

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in the file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Libpng库1位隔行图形信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

libpng是多种应用程序所使用的解析PNG图形格式的函数库。 libpng库没有正确地解析宽度值无法被8整除的1位隔行图形，导致libpng包含PNG文件的某些行中的未初始化位。远程攻击者可以利用文件中的界外像素读取部分敏感内存。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-2042

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-2042

请登录查看更多情报信息。

http://support.apple.com/kb/HT4077x_refsource_CONFIRM
http://www.vmware.com/security/advisories/VMSA-2010-0007.htmlx_refsource_CONFIRM
http://www.libpng.org/pub/png/libpng.htmlx_refsource_CONFIRM
http://secunia.com/advisories/35594third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35346third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/39215third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/35233vdb-entryx_refsource_BID
http://secunia.com/advisories/39251third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/39206third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35524third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2010/dsa-2032vendor-advisoryx_refsource_DEBIAN
http://ubuntu.com/usn/usn-913-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2009/1510vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/0637vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/0847vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/0682vdb-entryx_refsource_VUPEN
http://security.gentoo.org/glsa/glsa-200906-01.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDVSA-2010:063vendor-advisoryx_refsource_MANDRIVA
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809vendor-advisoryx_refsource_SLACKWARE
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.htmlvendor-advisoryx_refsource_FEDORA
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.htmlvendor-advisoryx_refsource_APPLE
https://exchange.xforce.ibmcloud.com/vulnerabilities/50966vdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.htmlmailing-listx_refsource_FULLDISC
http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.htmlmailing-listx_refsource_BUGTRAQ
http://lists.vmware.com/pipermail/security-announce/2010/000090.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2009-2042

Same Patch Batch · n/a · 2009-06-12 · 24 CVEs total

CVE-2009-2043		Mozilla Firefox 'nsViewManager.cpp'空指针拒绝服务漏洞
CVE-2009-2040		Grestul "admin/options.php" 授权问题漏洞
CVE-2009-2039		osCommerce 模块"Luottokunta" 未明安全漏洞
CVE-2009-2038		osCommerce 模块"Finnish Bank Payment" 未明安全漏洞
CVE-2009-2037		Online Grades & Attendance多个目录遍历漏洞
CVE-2009-2036		geekbill Open Biller "index.php" SQL注入漏洞
CVE-2009-2035		Drupal Services Module Key Based Access 未授权访问漏洞
CVE-2009-2034		Yogurt 'writemessage.php' SQL注入注入漏洞
CVE-2009-2033		Yogurt 'index.php'跨站脚本攻击漏洞
CVE-2009-2032		Pagedowntech PDshopPro 'search.asp'跨站脚本攻击漏洞
CVE-2009-2041		ActiveCollab跨站脚本攻击漏洞
CVE-2009-2044		Mozilla Firefox 输入验证错误漏洞
CVE-2009-1392		Mozilla Firefox 浏览器引擎多个内存破坏和代码执行漏洞
CVE-2009-1841		Mozilla Firefox "xpcwrappedjsclass.cpp" 权限管理和访问控制漏洞
CVE-2009-1840		Mozilla Firefox "XUL"文件安全绕过和访问控制漏洞
CVE-2009-1839		Mozilla Firefox "file: URL" 安全绕过和本地文件访问漏洞
CVE-2009-1838		Mozilla Firefox 垃圾收集功能权限管理和代码执行漏洞
CVE-2009-1837		Mozilla Firefox "NPObjWrapper_NewResolve" 内存破坏漏洞
CVE-2009-1836		Mozilla Firefox "HTTP Host"报头中间人攻击和信息泄露漏洞
CVE-2009-1835		Mozilla Firefox "file:// URL" 本地文件访问漏洞

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-2042

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-2042

I. Basic Information for CVE-2009-2042

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-2042

III. Intelligence Information for CVE-2009-2042

Same Patch Batch · n/a · 2009-06-12 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-2042

Leave a comment