7 matches found
openSUSE Security Update : optipng (optipng-572)
Specially crafted BMP files could overflow a buffer in optipng CVE-2008-5101, specially crafted GIF files could crash optipng CVE-2009-0749. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
SuSE Security Summary SUSE-SR:2009:006
The remote host is missing updates announced in advisory SUSE-SR:2009:006. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
openSUSE 10 Security Update : optipng (optipng-6038)
Specially crafted BMP files could overflow a buffer in optipng CVE-2008-5101, specially crafted GIF files could crash optipng CVE-2009-0749. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
FreeBSD : optipng -- arbitrary code execution via crafted BMP image (2bc960c4-e665-11dd-afcd-00e0815b8da8)
Secunia reports : A vulnerability has been reported in OptiPNG, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the BMP reader and can be exploited to cause a buffer overflow by tricking a user into...
[ GLSA 200812-01 ] OptiPNG: User-assisted execution of arbitrary code
Gentoo Linux Security Advisory GLSA 200812-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
Gentoo Security Advisory GLSA 200812-01 (optipng)
The remote host is missing updates announced in advisory GLSA 200812-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CVE-2008-5101
OptiPNG vulnerability CVE-2008-5101: A buffer overflow in the BMP reader of OptiPNG 0.6 and 0.6.1 can be triggered by a crafted BMP image, enabling user-assisted arbitrary code execution. OpenVAS/Nessus entries link this to BMP-induced heap/buffer overflow and note affected packages across OpenSU...