Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200805-10 Normal: Pngcrush User-Assisted Code Execution

gentoo
Calendar Grey May 11, 2008
Dist Gentoo Esm H88
Pngcrush security note GLSA 202105-15 outlines a medium-level flaw enabling user-enabled execution of unintended code.
A vulnerability in Pngcrush might result in user-assisted execution of arbitrary code.

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200805-10
                                            https://security.gentoo.org/

  Severity: Normal
     Title: Pngcrush: User-assisted execution of arbitrary code
      Date: May 11, 2008
      Bugs: #219033
        ID: 200805-10


Synopsis
=======
A vulnerability in Pngcrush might result in user-assisted execution of
arbitrary code.

Background
=========
Pngcrush is a multi platform optimizer for PNG (Portable Network
Graphics) files.

Affected packages
================
    -------------------------------------------------------------------
     Package             /  Vulnerable  /                   Unaffected
    -------------------------------------------------------------------
  1  media-gfx/pngcrush     < 1.6.4-r1                     >= 1.6.4-r1

==========
It has been reported that Pngcrush includes a copy of libpng that is
vulnerable to a memory corruption (GLSA 200804-1...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory gentoo code execution normal severity pngcrush user-assisted attack

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo code execution normal severity pngcrush user-assisted attack

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here