5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.197 Low
EPSS
Percentile
95.8%
The libpng package contains a library of functions for creating and
manipulating PNG (Portable Network Graphics) image format files.
Several flaws were discovered in the way libpng handled various PNG image
chunks. An attacker could create a carefully crafted PNG image file in
such a way that it could cause an application linked with libpng to crash
when the file was manipulated. (CVE-2007-5269)
Users should update to these updated packages which contain a backported
patch to correct these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | x86_64 | libpng | < 1.2.10-7.1.el5_0.1 | libpng-1.2.10-7.1.el5_0.1.x86_64.rpm |
RedHat | 5 | x86_64 | libpng-devel | < 1.2.10-7.1.el5_0.1 | libpng-devel-1.2.10-7.1.el5_0.1.x86_64.rpm |
RedHat | any | s390x | libpng-devel | < 1.2.2-28 | libpng-devel-1.2.2-28.s390x.rpm |
RedHat | 4 | ppc | libpng | < 1.2.7-3.el4_5.1 | libpng-1.2.7-3.el4_5.1.ppc.rpm |
RedHat | any | ia64 | libpng-devel | < 1.0.14-11 | libpng-devel-1.0.14-11.ia64.rpm |
RedHat | 5 | i386 | libpng-devel | < 1.2.10-7.1.el5_0.1 | libpng-devel-1.2.10-7.1.el5_0.1.i386.rpm |
RedHat | any | ia64 | libpng10-devel | < 1.0.13-18 | libpng10-devel-1.0.13-18.ia64.rpm |
RedHat | 4 | x86_64 | libpng10 | < 1.0.16-3.el4_5.1 | libpng10-1.0.16-3.el4_5.1.x86_64.rpm |
RedHat | 4 | ppc64 | libpng10 | < 1.0.16-3.el4_5.1 | libpng10-1.0.16-3.el4_5.1.ppc64.rpm |
RedHat | 4 | s390x | libpng10 | < 1.0.16-3.el4_5.1 | libpng10-1.0.16-3.el4_5.1.s390x.rpm |