rPSA-2006-0133-1 libpng Jul 19 2006 07:47PM
Justin M. Forbes (jmforbes rpath com)
rPath Security Advisory: 2006-0133-1
Published: 2006-07-19
Products: rPath Linux 1
Rating: Major
Exposure Level Classification:
User Non-deterministic Unauthorized Access
Updated Versions:
libpng=/conary.rpath.com@rpl:devel//1/1.2.12-2-0.1

References:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3334
https://issues.rpath.com/browse/RPL-517

Description:
Previous versions of the libpng package contain a weakness in
processing images that is known to create a denial of service
vulnerability and is expected also to allow unauthorized access.
This weakness is triggered by malformed png images that may be
provided to applications such as web browsers by an attacker.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus