Fedora 10: 2009-6128 High: pnglib Buffer Overflow Vulnerabilities
fedora
May 18, 2009
- CVE-2005-2974: NULL pointer dereference crash (#494826) - CVE-2005-3350:
Memory corruption via a crafted GIF (#494823) - Solved multilib problems with
documentation (#465208, ...
Summary
The giflib package contains a shared library of functions for loading and
saving GIF format image files. It is API and ABI compatible with libungif,
the library which supported uncompressed GIFs while the Unisys LZW patent
was in effect.
Update Information:
- CVE-2005-2974: NULL pointer dereference crash (#494826) - CVE-2005-3350: Memory corruption via a crafted GIF (#494823) - Solved multilib problems with documentation (#465208, #474538) - Removed static library from giflib-devel package (#225796 #c1)
Topics Covered
Change Log
* Sat May 16 2009 Robert Scheck
References
[ 1 ] Bug #494826 - CVE-2005-2974 giflib/libunfig: NULL pointer dereference crash
https://bugzilla.redhat.com/show_bug.cgi?id=494826
[ 2 ] Bug #494823 - CVE-2005-3350 giflib/libunfig: memory corruption via a crafted GIF
https://bugzilla.redhat.com/show_bug.cgi?id=494823
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update giflib' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: giflib
Product: Fedora 9
Version: 4.1.3
Release: 10.fc9
Summary: Library for manipulating GIF format image files
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!