33 matches found
Low: pngcrush
Issue Overview: A double-free bug was discovered in pngcrush's handling of the sPLT chunk. A malicious PNG could crash the pngcrush process. CVE-2015-7700 Affected Packages: pngcrush Issue Correction: Run yum update pngcrush or yum update --advisory ALAS-2016-646 to update your system. New...
Internet Bug Bounty: pngcrush double-free/segfault could result in DoS (CVE-2015-7700)
All versions of pngcrush pmt.sourceforge.net/pngcrush prior to version 1.7.87 have a double-free segfault that can be triggered by reading a valid PNG file that contains the sPLT chunk. This bug has been fixed in 1.7.87 by the project maintainer. Persuading someone to run pngcrush with a valid PN...
SuSE 10 Security Update : libpng (ZYPP Patch Number 2325)
The sPLT chunk handling in libpng was incorrect and a handcrafted PNG file could be use to cause an out-of-bounds read, effectively crashing the PNG viewer or webbrowser. CVE-2006-5793 Additionally a 2 byte stackoverflow was fixed which we do not believe to be exploitable. It will cause an abort ...
Ubuntu 5.10 / 6.06 LTS / 6.10 : libpng vulnerability (USN-383-1)
Tavis Ormandy discovered that libpng did not correctly calculate the size of sPLT structures when reading an image. By tricking a user or an automated system into processing a specially crafted PNG file, an attacker could exploit this weakness to crash the application using the library. Note that...
openSUSE 10 Security Update : libpng (libpng-2322)
The sPLT chunk handling in libpng was incorrect and a handcrafted PNG file could be use to cause an out-of-bounds read, effectively crashing the PNG viewer or webbrowser. CVE-2006-5793 Additionaly a 2 byte stackoverflow was fixed which we do not believe to be exploitable. It will cause an abort o...
Moderate: Red Hat Security Advisory: libpng security update
Updated libpng packages that fix security issues are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libpng package contains a library of functions for creating and manipulating PNG Portable Netwo...
GLSA-200611-09 : libpng: Denial of Service
The remote host is affected by the vulnerability described in GLSA-200611-09 libpng: Denial of Service Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that a vulnerability exists in the sPLT chunk handling code of libpng, a large sPLT chunk may cause an application to attempt to...
CVE-2006-5793
The sPLT chunk handling code pngsetsPLT function in pngset.c in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service crash via malformed sPLT chunks that trigger an out-of-bounds read...
CVE-2006-5793
The sPLT chunk handling code pngsetsPLT function in pngset.c in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service crash via malformed sPLT chunks that trigger an out-of-bounds read...
CVE-2006-5793
Concrete details found: The issue affects libpng 1.0.6–1.2.12, due to a wrong data-type size in the sPLT chunk handling (png_set_sPLT in pngset.c). This can trigger an out-of-bounds read and crash (DoS) when processing malformed sPLT chunks. Remediation referenced in connected docs as patching li...
USN-383-1: libpng vulnerability
Tavis Ormandy discovered that libpng did not correctly calculate the size of sPLT structures when reading an image. By tricking a user or an automated system into processing a specially crafted PNG file, an attacker could exploit this weakness to crash the application using the library...
libpng: Denial of service
Background libpng is a free ANSI C library used to process and manipulate PNG images. Description Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that a vulnerability exists in the sPLT chunk handling code of libpng, a large sPLT chunk may cause an application to attempt to read...
[SA22900] libpng sPLT Chunk Handling Denial of Service
TITLE: libpng sPLT Chunk Handling Denial of Service SECUNIA ADVISORY ID: SA22900 VERIFY ADVISORY: http://secunia.com/advisories/22900/ CRITICAL: Less critical IMPACT: DoS WHERE: From remote SOFTWARE: libpng 1.x http://secunia.com/product/3439/ DESCRIPTION: Tavis Ormandy has reported a vulnerabili...