13 matches found
SLES10: Security update for libpng
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libpng libpng-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references...
SuSE9 Security Update : libpng, libpng-devel (YOU Patch Number 12339)
This update of libpng fixes the function pngcheckkeyword that allowed setting arbitrary bytes in the process memory to 0. CVE-2008-5907 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...
openSUSE Security Update : libpng-devel (libpng-devel-455)
This update of libpng fixes the function pngcheckkeyword that allowed setting arbitrary bytes in the process memory to 0. CVE-2008-5907 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : libpng-devel (libpng-devel-455)
This update of libpng fixes the function pngcheckkeyword that allowed setting arbitrary bytes in the process memory to 0. CVE-2008-5907 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Mandriva Linux Security Advisory : libpng (MDVSA-2009:051)
A number of vulnerabilities have been found and corrected in libpng : Fixed 1-byte buffer overflow in pngpread.c CVE-2008-3964. This was allready fixed in Mandriva Linux 2009.0. Fix the function pngcheckkeyword that allowed setting arbitrary bytes in the process memory to 0 CVE-2008-5907. Fix a...
Ubuntu: Security Advisory (USN-730-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-730-1: libpng vulnerabilities
It was discovered that libpng did not properly perform bounds checking in certain operations. An attacker could send a specially crafted PNG image and cause a denial of service in applications linked against libpng. This issue only affected Ubuntu 8.04 LTS. CVE-2007-5268, CVE-2007-5269 Tavis...
Mandrake Security Advisory MDVSA-2009:051 (libpng)
The remote host is missing an update to libpng announced via advisory MDVSA-2009:051. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
openSUSE 10 Security Update : libpng (libpng-5944)
This update of libpng fixes the function pngcheckkeyword that allowed setting arbitrary bytes in the process memory to 0. CVE-2008-5907 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
CVE-2008-5907
The pngcheckkeyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0'...
CVE-2008-5907
The pngcheckkeyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0'...
CVE-2008-5907
The pngcheckkeyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0'...
CVE-2008-5907
The CVE-2008-5907 vulnerability affects libpng prior to 1.0.42 and 1.2.x prior to 1.2.34, where png_check_keyword could be manipulated via crafted PNG keywords to zero out an arbitrary memory location. The issue is characterized as context-dependent and not publicly detailed beyond the memory-wri...