Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2012:0523
HistoryApr 25, 2012 - 12:00 a.m.

(RHSA-2012:0523) Moderate: libpng security update

2012-04-2500:00:00
access.redhat.com
19

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.056 Low

EPSS

Percentile

92.5%

JSON

The libpng packages contain a library of functions for creating and
manipulating PNG (Portable Network Graphics) image format files.

A heap-based buffer overflow flaw was found in the way libpng processed
tEXt chunks in PNG image files. An attacker could create a
specially-crafted PNG image file that, when opened, could cause an
application using libpng to crash or, possibly, execute arbitrary code with
the privileges of the user running the application. (CVE-2011-3048)

Users of libpng should upgrade to these updated packages, which correct
this issue. For Red Hat Enterprise Linux 5, they contain a backported
patch. For Red Hat Enterprise Linux 6, they upgrade libpng to version
1.2.49. All running applications using libpng must be restarted for the
update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6s390xlibpng-debuginfo< 1.2.49-1.el6_2libpng-debuginfo-1.2.49-1.el6_2.s390x.rpm
RedHat6x86_64libpng< 1.2.49-1.el6_2libpng-1.2.49-1.el6_2.x86_64.rpm
RedHat6s390libpng-debuginfo< 1.2.49-1.el6_2libpng-debuginfo-1.2.49-1.el6_2.s390.rpm
RedHat5ia64libpng-devel< 1.2.10-17.el5_8libpng-devel-1.2.10-17.el5_8.ia64.rpm
RedHat6ppc64libpng-static< 1.2.49-1.el6_2libpng-static-1.2.49-1.el6_2.ppc64.rpm
RedHat6s390libpng< 1.2.49-1.el6_2libpng-1.2.49-1.el6_2.s390.rpm
RedHat5s390xlibpng< 1.2.10-17.el5_8libpng-1.2.10-17.el5_8.s390x.rpm
RedHat5i386libpng-devel< 1.2.10-17.el5_8libpng-devel-1.2.10-17.el5_8.i386.rpm
RedHat6ppclibpng-debuginfo< 1.2.49-1.el6_2libpng-debuginfo-1.2.49-1.el6_2.ppc.rpm
RedHat6srclibpng< 1.2.49-1.el6_2libpng-1.2.49-1.el6_2.src.rpm
Rows per page:
1-10 of 381

Related

veracode 1
nessus 30
f5 2
fedora 6
openvas 36
centos 1
amazon 1
ubuntucve 1
prion 1
ubuntu 1
cve 1
debian 1
altlinux 1
freebsd 1
oraclelinux 1
slackware 1
securityvulns 7
gentoo 1
ibm 1
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:50:57
nessus
nessus
F5 Networks BIG-IP : Libpng vulnerability (SOL15881)
2014-11-28 00:00:00
Amazon Linux AMI : libpng (ALAS-2012-68)
2013-09-04 00:00:00
Fedora 15 : libpng10-1.0.59-1.fc15 (2012-5079)
2012-04-09 00:00:00
f5
f5
K15881 : Libpng vulnerability CVE-2011-3048
2014-12-19 00:00:00
SOL15881 - Libpng vulnerability CVE-2011-3048
2014-11-27 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: libpng-1.5.10-1.fc17
2012-04-12 02:25:15
[SECURITY] Fedora 17 Update: libpng10-1.0.59-1.fc17
2012-04-12 03:10:50
[SECURITY] Fedora 16 Update: libpng10-1.0.59-1.fc16
2012-04-08 03:34:21
openvas
openvas
Ubuntu Update for libpng USN-1417-1
2012-04-11 00:00:00
Fedora Update for libpng FEDORA-2012-5526
2012-08-30 00:00:00
RedHat Update for libpng RHSA-2012:0523-01
2012-04-26 00:00:00
centos
centos
libpng security update
2012-04-25 13:17:13
amazon
amazon
Medium: libpng
2012-04-30 14:52:00
ubuntucve
ubuntucve
CVE-2011-3048
2011-12-31 00:00:00
prion
prion
Heap overflow
2012-05-29 20:55:00
ubuntu
ubuntu
libpng vulnerability
2012-04-05 00:00:00
cve
cve
CVE-2011-3048
2012-05-29 20:55:00
debian
debian
[SECURITY] [DSA 2446-1] libpng security update
2012-04-04 19:13:41
altlinux
altlinux
Security fix for the ALT Linux 6 package libpng version 1.2.49-alt1
2012-04-05 00:00:00
freebsd
freebsd
png -- memory corruption/possible remote code execution
2012-03-29 00:00:00
oraclelinux
oraclelinux
libpng security update
2012-04-25 00:00:00
slackware
slackware
[slackware-security] libpng
2012-07-25 03:00:37
securityvulns
securityvulns
libpng integer overflow
2012-02-22 00:00:00
Apple Mac OS X multiple security vulnerabilities
2012-10-01 00:00:00
APPLE-SA-2012-09-24-1 Apple TV 5.1
2012-10-04 00:00:00
gentoo
gentoo
libpng: Multiple vulnerabilities
2012-06-22 00:00:00
ibm
ibm
Security Bulletin: Gdal vulnerabilities affect IBM Netezza Analytics for NPS
2022-06-03 14:32:29

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.056 Low

EPSS

Percentile

92.5%

JSON
Related for RHSA-2012:0523
veracode1nessus30f52fedora6openvas36centos1amazon1ubuntucve1prion1ubuntu1cve1debian1altlinux1freebsd1oraclelinux1slackware1securityvulns7gentoo1ibm1