390 matches found
libpng security update
CentOS Errata and Security Advisory CESA-2015:2594 Updated libpng packages that fix three security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...
UBUNTU-CVE-2015-6818
The decodeihdrchunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does not enforce uniqueness of the IHDR aka image header chunk in a PNG image, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted...
The vulnerability of the Gentoo Linux operating system, which allows a malicious intruder to compromise the accessibility of protected information
The vulnerability of the libpng package up to version 1.2.13 in the Gentoo Linux operating system can lead to a violation of the accessibility of protected information. This vulnerability can be exploited remotely...
Microsoft windows PNG Parsing Remote Information Disclosure Vulnerability
Microsoft Windows is a popular operating system. A remote information disclosure vulnerability exists in Microsoft windows PNG parsing, which can be exploited by remote attackers to obtain sensitive memory information due to a program's failure to properly handle uninitialized memory, by...
[SECURITY] Fedora 21 Update: libpng10-1.0.63-1.fc21
The libpng10 package contains an old version of libpng, a library of functi ons for creating and manipulating PNG Portable Network Graphics image format files. This package is needed if you want to run binaries that were linked dynamic ally with libpng 1.0.x...
UBUNTU-CVE-2014-9665
The LoadSBitPng function in sfnt/pngshim.c in FreeType before 2.5.4 does not restrict the rows and pitch values of PNG data, which allows remote attackers to cause a denial of service integer overflow and heap-based buffer overflow or possibly have unspecified other impact by embedding a PNG file...
DEBIAN-CVE-2014-9601
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...
PYSEC-2015-16
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...
MSN Messenger 6.2.0137 PNG Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12506/info A remotely exploitable buffer overflow exists in MSN Messenger and Windows Messenger. This vulnerability is related to parsing of Portable Network Graphics PNG image header data. Successful exploitation will...
Fedora Update for libpng12 FEDORA-2014-1766
Check for the Version of libpng12 OpenVAS Vulnerability Test Fedora Update for libpng12 FEDORA-2014-1766 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for libpng12 FEDORA-2014-1770
Check for the Version of libpng12 OpenVAS Vulnerability Test Fedora Update for libpng12 FEDORA-2014-1770 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Internet Explorer PNG Image Rendering Memory Corruption - improved performance (MS05-025; CVE-2005-1211; CVE-2006-0025)
Portable Network Graphics PNG is a popular image file format. Specially crafted PNG files may be used to create a DoS condition and in some cases, arbitrary code execution...
Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerabilities - Mac OS X
Adobe Photoshop is prone to buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:photoshopcs6";...
Adobe Photoshop CS6 - .png Parsing Heap Overflow
Adobe Photoshop CS6 - .png Parsing Heap Overflow Application: Adobe Photoshop CS6 PNG Parsing Heap Overflow Platforms: Windows & Macintosh Versions: 13.x Secunia: SA49141 PRL: 2012-27 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter:...
Adobe Photoshop CS6 - '.png' Parsing Heap Overflow
Application: Adobe Photoshop CS6 PNG Parsing Heap Overflow Platforms: Windows & Macintosh Versions: 13.x Secunia: SA49141 PRL: 2012-27 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3 Technical...
Fedora Update for libpng10 FEDORA-2012-4902
Check for the Version of libpng10 OpenVAS Vulnerability Test Fedora Update for libpng10 FEDORA-2012-4902 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for libpng FEDORA-2012-3605
Check for the Version of libpng OpenVAS Vulnerability Test Fedora Update for libpng FEDORA-2012-3605 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Fedora Update for libpng10 FEDORA-2012-2003
Check for the Version of libpng10 OpenVAS Vulnerability Test Fedora Update for libpng10 FEDORA-2012-2003 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
DEBIAN-CVE-2012-3438
The Magickpngmalloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service crash via a crafted PNG file that triggers incorrect memory allocation...
Scientific Linux Security Update : cups on SL3.x, SL5.x i386/x86_64
A NULL pointer dereference flaw was found in the way CUPS handled subscriptions for printing job completion notifications. A local user could use this flaw to crash the CUPS daemon by submitting a large number of printing jobs requiring mail notification on completion, leading to a denial of...