Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200711-08 Normal Severity: Libpng DoS Threat

gentoo
Calendar Grey November 7, 2007
Dist Gentoo Esm H88
Intruders may leverage weaknesses in libpng to destabilize software. Updating is advised to ensure user protection.
Several vulnerabilities in libpng may allow a remote attacker to crash applications that handle untrusted images.

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200711-08
                                            https://security.gentoo.org/

  Severity: Normal
     Title: libpng: Multiple Denials of Service
      Date: November 07, 2007
      Bugs: #195261
        ID: 200711-08


Synopsis
=======
Several vulnerabilities in libpng may allow a remote attacker to crash
applications that handle untrusted images.

Background
=========
libpng is a free ANSI C library used to process and manipulate PNG
images.

Affected packages
================
    -------------------------------------------------------------------
     Package            /   Vulnerable   /                  Unaffected
    -------------------------------------------------------------------
  1  media-libs/libpng      < 1.2.21-r3                   >= 1.2.21-r3

==========
An off-by-one error when handling ICC profile chunks in the
png_set_iCCP() function was discovered (CVE-2007...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory denial of service Gentoo libpng normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory denial of service Gentoo libpng normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here