Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SciLinux SL5.x Advisory: CVE-2007-5503 Critical Cairo Update

Calendar Nov 29, 2007 User Avatar LinuxSecurity Advisories
1 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory security issue arbitrary code execution important integer overflow cairo SL5.x
Important: cairo security update 
Date: Thu, 29 Nov 2007 16:23:27 -0600
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA for cairo on SL5.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 

Synopsis: 	Important: cairo security update
Issue date:	2007-11-29
CVE Names:	CVE-2007-5503

An integer overflow flaw was found in the way Cairo processes PNG images.
If an application linked against Cairo processes a malicious PNG image, it
is possible to execute arbitrary code as the user running the application.
(CVE-2007-5503)

SL 5.x

 SRPMS:
cairo-1.2.4-3.el5_1.src.rpm
 i386:
cairo-1.2.4-3.el5.i386.rpm
cairo-devel-1.2.4-3.el5.i386.rpm
 x86_64:
cairo-1.2.4-3.el5.i386.rpm
cairo-1.2.4-3.el5.src.rpm
cairo-1.2.4-3.el5.x86_64.rpm
cairo-devel-1.2.4-3.el5.i386.rpm
cairo-devel-1.2.4-3.el5.x86_64.rpm

-Connie Sieh
-Troy Dawson
Your message here