Download
| Alert*
oval:org.secpod.oval:def:20743
The host is installed with VideoLAN VLC Media Player before 0.9.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a PNG image with crafted zTXt chunks. Successful exploitation allow context-dependent attackers to cause a denial of service ... oval:org.secpod.oval:def:300969 A number of vulnerabilities have been found and corrected in libpng: Fixed 1-byte buffer overflow in pngpread.c . This was allready fixed in Mandriva Linux 2009.0. Fix the function png_check_keyword that allowed setting arbitrary bytes in the process memory to 0 . Fix a potential DoS or to potentia ... oval:org.secpod.oval:def:700311 It was discovered that libpng did not properly perform bounds checking in certain operations. An attacker could send a specially crafted PNG image and cause a denial of service in applications linked against libpng. This issue only affected Ubuntu 8.04 LTS. Tavis Ormandy discovered that libpng did ... |