Linux Distros Unpatched Vulnerability : CVE-2016-2191

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory write and crash via ...

Amazon Linux 2 : optipng (ALAS-2019-1313)

The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory write and crash via a series of delta escapes in a crafted BMP image.CVE-2016-2191 C Tenable Network Security, Inc. The descriptive text and package checks i...

Medium: optipng

Issue Overview: The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory write and crash via a series of delta escapes in a crafted BMP image.CVE-2016-2191 Affected Packages: optipng Note: This advisory is applicab...

Fedora Update for optipng FEDORA-2016-2e339a7779

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2016-0135)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS : OptiPNG vulnerabilities (USN-2951-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2951-1 advisory. Gustavo Grieco discovered that OptiPNG incorrectly handled memory. A remote attacker could use this issue with a specially crafted image file to cause...

Ubuntu: Security Advisory (USN-2951-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : optipng (openSUSE-2016-469)

optipng was updated to fix one security issue. This security issue was fixed : - CVE-2016-2191: Invalid write while processing bitmap images bsc973992. - CVE-2016-3981: Heap buffer overflow pngxrbmp.c bmpreadrows - CVE-2016-3982: Heap buffer overflow pngxrbmp.c bmprle4fread %NASLMINLEVEL 70300 C...

openSUSE Security Update : optipng (openSUSE-2016-468)

optipng was updated to fix one security issue. This security issue was fixed : - CVE-2016-2191: Invalid write while processing bitmap images bsc973992. - CVE-2016-3981: Heap buffer overflow pngxrbmp.c bmpreadrows - CVE-2016-3982: Heap buffer overflow pngxrbmp.c bmprle4fread %NASLMINLEVEL 70300 C...

CVE-2016-2191

The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory write and crash via a series of delta escapes in a crafted BMP image...

[SECURITY] [DSA 3546-1] optipng security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3546-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 07, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3546-1 (optipng - security update)

Hans Jerry Illikainen discovered that missing input sanitising in the BMP processing code of the optipng PNG optimiser may result in denial of service or the execution of arbitrary code if a malformed file is processed. OpenVAS Vulnerability Test $Id: deb3546.nasl 6608 2017-07-07 12:05:05Z cfisch...