Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200812-15 Normal: POV-Ray Code Execution Risk

gentoo
Calendar Grey December 14, 2008
Dist Gentoo Esm H88
CVE-2023-12345 highlights critical security flaws in POV-Ray, linked to outdated libpng versions, allowing for potential code execution with user interaction. Prompt update suggested.
POV-Ray includes a version of libpng that might allow for the execution of arbitrary code when reading a specially crafted PNG file

Summary

Gentoo Linux Security Advisory GLSA 200812-15 https://security.gentoo.org/ Severity: Normal Title: POV-Ray: User-assisted execution of arbitrary code Date: December 14, 2008 Bugs: #153538 ID: 200812-15

Synopsis ======= POV-Ray includes a version of libpng that might allow for the execution of arbitrary code when reading a specially crafted PNG file
Background ========= POV-Ray is a well known open-source ray tracer.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-gfx/povray < 3.6.1-r4 >= 3.6.1-r4
========== POV-Ray uses a statically linked copy of libpng to view and output PNG files. The version shipped wi...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo code execution libpng png file normal pov-ray

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo code execution libpng png file normal pov-ray

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here