SUSE-SU-2019:1398-2 -- SLES libpng16ID: oval:org.secpod.oval:def:89050925 | Date: (C)2024-01-30 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for libpng16 fixes the following issues: Security issues fixed: - CVE-2019-7317: Fixed a use-after-free vulnerability, triggered when png_image_free was called under png_safe_execute . - CVE-2018-13785: Fixed a wrong calculation of row_factor in the png_check_chunk_length function in pngrutil.c, which could haved triggered and integer overflow and result in an divide-by-zero while processing a crafted PNG file, leading to a denial of service
Platform: |
SUSE Linux Enterprise Desktop 15 SP1 |
SUSE Linux Enterprise Server 15 SP1 |