Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200705-24 Moderate: libpng Denial of Service Threat

gentoo
Calendar Grey May 31, 2007
Dist Gentoo Esm H88
Cyber intruders can potentially disrupt software relying on libpng because of a vulnerability. It is advisable to upgrade to the newest libpng version immediately.
A vulnerability in libpng may allow a remote attacker to crash applications that handle untrusted images.

Summary

Gentoo Linux Security Advisory GLSA 200705-24 https://security.gentoo.org/ Severity: Normal Title: libpng: Denial of Service Date: May 31, 2007 Bugs: #178004 ID: 200705-24

Synopsis ======= A vulnerability in libpng may allow a remote attacker to crash applications that handle untrusted images.
Background ========= libpng is a free ANSI C library used to process and manipulate PNG images.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/libpng < 1.2.17 >= 1.2.17
========== Mats Palmgren fixed an error in file pngrutil.c in which the trans[] array might be not allocated because of images with a bad tRNS chunk CRC value.
Impact ===== A remote attack...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service gentoo buffer overflow libpng

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory denial of service gentoo buffer overflow libpng

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here