Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Slackware 12.0: 2007-325-02 Urgent: OpenSSL Security Patch

slackware
Calendar Grey November 21, 2007
Dist Slackware Esm H88
Important patch for libpng across various Slackware editions to resolve vulnerabilities and improve overall system security.
New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, and -current to fix security issues

Summary

Here are the details from the Slackware 12.0 ChangeLog: patches/packages/libpng-1.2.23-i486-1_slack12.0.tgz: Upgraded to libpng-1.2.23. Previous libpng versions may crash when loading malformed PNG files. It is not currently known if this vulnerability can be exploited to execute malicious code. For more information, see: https://www.cve.org/CVERecord?id=CVE-2007-5266 https://www.cve.org/CVERecord?id=CVE-2007-5267 https://www.cve.org/CVERecord?id=CVE-2007-5268 https://www.cve.org/CVERecord?id=CVE-2007-5269 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical issue buffer overflow slackware libpng package upgrade

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 8.1:
Updated package for Slackware 9.0:
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware -current:

MD5 Signatures

Slackware 8.1 package: 8d0dd9842dad8760a307b26553a65d4b libpng-1.2.23-i386-1_slack8.1.tgz
Slackware 9.0 package: de97c8d48064f524f5f1e8282239b273 libpng-1.2.23-i386-1_slack9.0.tgz
Slackware 9.1 package: b27a0b7a99c61481790e48c3ba8f9b7c libpng-1.2.23-i486-1_slack9.1.tgz
Slackware 10.0 package: 554b84161d14901c9ffe6af8bb3f8248 libpng-1.2.23-i486-1_slack10.0.tgz
Slackware 10.1 package: 3f9f1ba6c975ea16b8921482fba71c74 libpng-1.2.18-i486-1_slack10.1.tgz
Slackware 10.2 package: 3a7f07dbaef1058987718fc5bc2beed0 libpng-1.2.18-i486-1_slack10.2.tgz
Slackware 11.0 package: 0582f807f04c7041092b0ccc10c17d1f libpng-1.2.23-i486-1_slack11.0.tgz
Slackware 12.0 package: aaa0871396e70f44cd8ee6b4243fa93e libpng-1.2.23-i486-1_slack12.0.tgz
Slackware -current package: db8a8d10e3b637380875d7644faa8e37 libpng-1.2.23-i486-1.tgz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical issue buffer overflow slackware libpng package upgrade

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the packages as root: # upgradepkg libpng-1.2.23-i486-1_slack12.0.tgz Applications that use libpng may have to be restarted.

Related News

Your message here