optipng - security update

2015-10-2200:00:00

Google

osv.dev

0.034 Low

EPSS

Percentile

91.5%

Gustavo Grieco discovered a use-after-free causing an invalid/double
free in optipng 0.6.4.

For Debian 6 Squeeze, this issue has been fixed in optipng version
0.6.4-1+deb6u11.

CPENameOperatorVersion
optipngeq0.6.4-1

CPE	Name	Operator	Version
	optipng	eq	0.6.4-1

References

www.debian.org/lts/security/2015/dla-332

0.034 Low

EPSS

Percentile

91.5%

Related for OSV:DLA-332-1