Fedora: 2,1: libpng 1.0 Denial of service vulnerability
Summary
The libpng10 package contains an old version of libpng, a library of
functions for creating and manipulating PNG (Portable Network Graphics)
image format files.
This package is needed if you want to run binaries that were linked
dynamically
with libpng 1.0.x.
The libpng10 package contains an old version of libpng, a library of
functions for creating and manipulating PNG (Portable Network Graphics)
image format files.
This package is needed if you want to run binaries that were linked
dynamically
with libpng 1.0.x.
Update Information:
During an audit of Red Hat Linux updates, the Fedora Legacy team found a
security issue in libpng that had not been fixed in Fedora Core. An
attacker could carefully craft a PNG file in such a way that
it would cause an application linked to libpng to crash or potentially
execute arbitrary code when opened by a victim.
This update can be downloaded from:
e061938ff40d4b6d79d6a2867fade179 SRPMS/libpng10-1.0.15-5.src.rpm
10a4be8fa833afdd2c6c93452b9a81d8 x86_64/libpng10-1.0.15-5.x86_64.rpm
cf1d624c20f1ec1b56247c2b996c7d0e
x86_64/libpng10-devel-1.0.15-5.x86_64.rpm
249c40e90cad1abf55fdf689d4f96cba
x86_64/debug/libpng10-debuginfo-1.0.15-5.x86_64.rpm
070b4e3eab29bbf9915f9220e5430db5 i386/libpng10-1.0.15-5.i386.rpm
0d058440eb04087b8db8c9652d9a6fe5 i386/libpng10-devel-1.0.15-5.i386.rpm
2007c462b58b07032c2040080690b508
i386/debug/libpng10-debuginfo-1.0.15-5.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
CORE 1:
Fedora Update Notification
FEDORA-2004-174
2004-06-18
Product : Fedora Core 1
Name : libpng10
Version : 1.0.15
Release : 4
Summary : Old version of libpng, needed to run old binaries.
Description :
The libpng10 package contains an old version of libpng, a library of
functions for creating and manipulating PNG (Portable Network Graphics)
image format files.
This package is needed if you want to run binaries that were linked
dynamically
with libpng 1.0.x.
During an audit of Red Hat Linux updates, the Fedora Legacy team found a
security issue in libpng that had not been fixed in Fedora Core. An
attacker could carefully craft a PNG file in such a way that
it would cause an application linked to libpng to crash or potentially
execute arbitrary code when opened by a victim.
This update can be downloaded from:
27291030c4b45837604fa29ea1ba63af SRPMS/libpng10-1.0.15-4.src.rpm
373999494fd66d5110f30cc13f23afdf x86_64/libpng10-1.0.15-4.x86_64.rpm
c3179356daded13a6f03f5384e201772
x86_64/libpng10-devel-1.0.15-4.x86_64.rpm
0583f6e917579a841183ade07772ee71
x86_64/debug/libpng10-debuginfo-1.0.15-4.x86_64.rpm
c340858b643a92beb4ab16bcfff55e6c i386/libpng10-1.0.15-4.i386.rpm
4642cf8bafa073269763964a85ef5139 i386/libpng10-devel-1.0.15-4.i386.rpm
67b64172374624083b436c49d0ae7a8a
i386/debug/libpng10-debuginfo-1.0.15-4.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
Change Log
References
CORE 2: Fedora Update Notification FEDORA-2004-176 2004-06-18 Product : Fedora Core 2 Name : libpng10 Version : 1.0.15 Release : 5 Summary : Old version of libpng, needed to run old binaries. Description : The libpng10 package contains an old version of libpng, a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. This package is needed if you want to run binaries that were linked dynamically with libpng 1.0.x.
Update Instructions
