full-disclosure-uk May 2007 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: [Full-disclosure] rPSA-2007-0102-1 libpng

[Full-disclosure] rPSA-2007-0102-1 libpng

From: rPath Update Announcements <announce-noreply_at_nospam>
Date: Thu May 17 2007 - 02:01:04 GMT
To: security-announce@lists.rpath.com, update-announce@lists.rpath.com


rPath Security Advisory: 2007-0102-1
Published: 2007-05-16
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:

    Indirect User Deterministic Denial of Service Updated Versions:

    libpng=/conary.rpath.com@rpl:devel//1/1.2.18-1-0.1

References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2445 https://issues.rpath.com/browse/RPL-1381 http://www.kb.cert.org/vuls/id/684664

Description:

    Previous versions of the libpng package can cause applications to     crash when loading malformed PNG files. It is not currently known     whether this vulnerability can be exploited to execute malicious code.

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html



Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/