Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

libpng: multiple vulnerabilities

Package(s):

libpng

CVE #(s):

CAN-2002-1363 CAN-2004-0597 CAN-2004-0598 CAN-2004-0599

Created:

August 4, 2004

Updated:

February 10, 2005

Description:

There is yet another set of holes in libpng, versions 1.2.5 and prior, which can be exploited by a malicious image file; see this advisory from Chris Evans or this CERT advisory for details.

Alerts:

Fedora-Legacy	FLSA:1943	2005-02-08
Red Hat	RHSA-2004:421-01	2004-08-04
Gentoo	200408-22	2004-08-23
Whitebox	WBSA-2004:402-01	2004-08-19
Mandrake	MDKSA-2004:082	2004-08-12
Slackware	SSA:2004-223-01	2004-08-09
Slackware	SSA:2004-223-02	2004-08-07
Slackware	SSA:2004-222-01b	2004-08-10
Slackware	SSA:2004-222-01	2004-08-07
Conectiva	CLA-2004:856	2004-08-06
Trustix	TSLSA-2004-0040	2004-08-05
Gentoo	200408-03	2004-08-05
Debian	DSA-536-1	2004-08-04
Mandrake	MDKSA-2004:079	2004-08-04
SuSE	SUSE-SA:2004:023	2004-08-04
Red Hat	RHSA-2004:402-01	2004-08-04
OpenPKG	OpenPKG-SA-2004.035	2004-08-04

(Log in to post comments)

libpng: multiple vulnerabilities

Posted Aug 19, 2004 8:57 UTC (Thu) by james (subscriber, #1325) [Link]

Fedora has had these patched for a fortnight, now. The notifications are:

James.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds