Azure Linux 3.0 Security Update: optipng (CVE-2023-43907)

The version of optipng installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-43907 advisory. - OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at gifread.c...

Fedora 41 : optipng (2025-0533c67535)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-0533c67535 advisory. Update to 7.9.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora 42 : optipng (2025-6b4a9c1dd1)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-6b4a9c1dd1 advisory. Update to 7.9.1 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Fedora: Security Advisory (FEDORA-2025-0533c67535)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-43907 affecting package optipng for versions less than 0.7.8-5

CVE-2023-43907 affecting package optipng for versions less than 0.7.8-5. An upgraded version of the package is available that resolves this issue...

Linux Distros Unpatched Vulnerability : CVE-2023-43907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at gifread.c. CVE-2023-43907 Note that Nessus relies on the presence...

openSUSE: Security Advisory for optipng (openSUSE-SU-2023:0388-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for optipng (moderate)

openSUSE Security Update: Security update for optipng Announcement ID: openSUSE-SU-2023:0388-1 Rating: moderate References: 1215937 Cross-References: CVE-2023-43907 CVSS scores: CVE-2023-43907 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP4 ...

Updated optipng packages fix a security vulnerability

Updated the optipng package to fix a security vulnerability CVE-2023-43907 and other bugs. The GIF handler was vulnerable to a global buffer overflow...

MGASA-2023-0333 Updated optipng packages fix a security vulnerability

Updated the optipng package to fix a security vulnerability CVE-2023-43907 and other bugs. The GIF handler was vulnerable to a global buffer overflow...

Fedora 38 : optipng (2023-ae05c3bca8)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-ae05c3bca8 advisory. Update to 0.7.8 Security fix for CVE-2023-43907 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

Fedora 37 : optipng (2023-f3389245ce)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-f3389245ce advisory. Update to 0.7.8 Security fix for CVE-2023-43907 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

FreeBSD : PptiPNG -- Global-buffer-overflow (fe7ac70a-792b-11ee-bf9a-a04a5edf46d9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fe7ac70a-792b-11ee-bf9a-a04a5edf46d9 advisory. - OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at...

CVE-2023-43907

OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at gifread.c...

CVE-2023-43907

Summary: CVE-2023-43907 affects OptiPNG v0.7.7, where a global buffer overflow can be triggered via the “buffer” variable in gifread.c. The CVSS data assigns a HIGH impact with LOCAL attack vector, requiring user interaction, and a base score of 7.8. The interconnected advisories indicate that a ...

CVE-2023-43907

OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at gifread.c...