[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

111017

 
 

909

 
 

86402

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:051 -- Mandriva libpng

ID: oval:org.secpod.oval:def:300969Date: (C)2012-01-07   (M)2018-06-02
Class: PATCHFamily: unix




A number of vulnerabilities have been found and corrected in libpng: Fixed 1-byte buffer overflow in pngpread.c . This was allready fixed in Mandriva Linux 2009.0. Fix the function png_check_keyword that allowed setting arbitrary bytes in the process memory to 0 . Fix a potential DoS or to potentially compromise an application using the library . The updated packages have been patched to prevent this.

Platform:
Mandriva Linux 2009.0
Mandriva Linux 2008.1
Mandriva Linux 2008.0
Product:
libpng
Reference:
MDVSA-2009:051
CVE-2009-0040
CVE-2008-5907
CVE-2008-3964
CVE    3
CVE-2008-3964
CVE-2008-5907
CVE-2009-0040
CPE    3
cpe:/o:mandriva:linux:2008.1
cpe:/o:mandriva:linux:2009.0
cpe:/o:mandriva:linux:2008.0

© SecPod Technologies