Linux Security
    Linux Security
    Linux Security

    Fedora: 2,1: libpng 1.2 Denial of service vulnerability

    Date
    2180
    Posted By
    An attacker could carefully craft a PNG file in such a way that it would cause an application linked to libpng to crash or potentially execute arbitrary code.
    
    CORE 2:
    
    Fedora Update Notification
    FEDORA-2004-175
    2004-06-18
    ---------------------------------------------------------------------
     
    Product     : Fedora Core 2
    Name        : libpng
    Version     : 1.2.5
    Release     : 5
    Summary     : A library of functions for manipulating PNG image format
    files.
    Description :
    The libpng package contains a library of functions for creating and
    manipulating PNG (Portable Network Graphics) image format files.  PNG
    is a bit-mapped graphics format similar to the GIF format.  PNG was
    created to replace the GIF format, since GIF uses a patented data
    compression algorithm.
     
    Libpng should be installed if you need to manipulate PNG format image
    files.
     
    ---------------------------------------------------------------------
    Update Information:
     
    During an audit of Red Hat Linux updates, the Fedora Legacy team found a
    security issue in libpng that had not been fixed in Fedora Core. An
    attacker could carefully craft a PNG file in such a way that
    it would cause an application linked to libpng to crash or potentially
    execute arbitrary code when opened by a victim.
    ---------------------------------------------------------------------
     
    ---------------------------------------------------------------------
    This update can be downloaded from:
       https://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
     
    7110a37d68c8c40e714a1ac98968bf8c  SRPMS/libpng-1.2.5-5.src.rpm
    459fcd366522dc38efb4a652d8def823  x86_64/libpng-1.2.5-5.x86_64.rpm
    4d7c8e03855acd7b9becbe4346018696  x86_64/libpng-devel-1.2.5-5.x86_64.rpm
    57c26ab46c584b6f0f988158d898c054 
    x86_64/debug/libpng-debuginfo-1.2.5-5.x86_64.rpm
    9d383cea2fa4aef94fa80531214707bd  x86_64/libpng-1.2.5-5.i386.rpm
    f880999528679481d1c6ff76559a3049  x86_64/libpng-devel-1.2.5-5.i386.rpm
    213aeb2882f3ebba9859367b46e64849 
    x86_64/debug/libpng-debuginfo-1.2.5-5.i386.rpm9d383cea2fa4aef94fa80531214707bd  i386/libpng-1.2.5-5.i386.rpm
    f880999528679481d1c6ff76559a3049  i386/libpng-devel-1.2.5-5.i386.rpm
    213aeb2882f3ebba9859367b46e64849 
    i386/debug/libpng-debuginfo-1.2.5-5.i386.rpm
     
    This update can also be installed with the Update Agent; you can
    launch the Update Agent with the 'up2date' command.
    
    -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
    CORE 1:
    
    Fedora Update Notification
    FEDORA-2004-173
    2004-06-18
    ---------------------------------------------------------------------
     
    Product     : Fedora Core 1
    Name        : libpng
    Version     : 1.2.5
    Release     : 4
    Summary     : A library of functions for manipulating PNG image format
    files.
    Description :
    The libpng package contains a library of functions for creating and
    manipulating PNG (Portable Network Graphics) image format files.  PNG
    is a bit-mapped graphics format similar to the GIF format.  PNG was
    created to replace the GIF format, since GIF uses a patented data
    compression algorithm.
     
    Libpng should be installed if you need to manipulate PNG format image
    files.
     
    ---------------------------------------------------------------------
    Update Information:
     
    During an audit of Red Hat Linux updates, the Fedora Legacy team found a
    security issue in libpng that had not been fixed in Fedora Core. An
    attacker could carefully craft a PNG file in such a way that
    it would cause an application linked to libpng to crash or potentially
    execute arbitrary code when opened by a victim.
    ---------------------------------------------------------------------
     
    ---------------------------------------------------------------------
    This update can be downloaded from:
       https://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
     
    0824eaf1a7bda8624abffdf23c8e1cfd  SRPMS/libpng-1.2.5-4.src.rpm
    0d15484d8d0fe10aba3352d83d1a9856  x86_64/libpng-1.2.5-4.x86_64.rpm
    682e673705a6c0752acf66dafc2fb235  x86_64/libpng-devel-1.2.5-4.x86_64.rpm
    4c070a56703b15296c6d25c4a0bd45c7 
    x86_64/debug/libpng-debuginfo-1.2.5-4.x86_64.rpm
    be7033c0527158fe7ce64f3e6f0bcc30  x86_64/libpng-1.2.5-4.i386.rpm
    0da44b75a2e7dc229135b7cecaea0f8b  x86_64/libpng-devel-1.2.5-4.i386.rpm
    72987036728beaf4393af2710e81816a 
    x86_64/debug/libpng-debuginfo-1.2.5-4.i386.rpmbe7033c0527158fe7ce64f3e6f0bcc30  i386/libpng-1.2.5-4.i386.rpm
    0da44b75a2e7dc229135b7cecaea0f8b  i386/libpng-devel-1.2.5-4.i386.rpm
    72987036728beaf4393af2710e81816a 
    i386/debug/libpng-debuginfo-1.2.5-4.i386.rpm
     
    This update can also be installed with the Update Agent; you can
    launch the Update Agent with the 'up2date' command.
    
    

    LinuxSecurity Poll

    Which aspect of server security are you most interested in learning more about?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/38-which-aspect-of-server-security-are-you-most-interested-in-learning-more-about?task=poll.vote&format=json
    38
    radio
    [{"id":"131","title":"Preventing information leakage","votes":"1","type":"x","order":"1","pct":100,"resources":[]},{"id":"132","title":"Firewall considerations","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"133","title":"Permissions ","votes":"0","type":"x","order":"3","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.