User: Password:
|
|
Subscribe / Log in / New account

Eridani alert ERISA-2002:039 (libpng)

From:  Eridani Star System <linux@eridani.co.uk>
To:  eridani-announce@eridani.co.uk
Subject:  [Eridani-Announce] ERISA-2002:039 - libpng
Date:  Mon, 19 Aug 2002 19:22:43 +0100 (BST)

========================================================================= ERIDANI LINUX - SECURITY ANNOUNCEMENT ========================================================================= Package: libpng Summary: libpng buffer overflow vulnerability Date: 2002-08-19 ID: ERISA-2002:039 ========================================================================= Problem description: Versions of libpng prior to 1.2.4 and 1.0.14 have a buffer overflow vulnerability that could lead to remote code execution. libpng is the official PNG reference library. It supports almost all PNG features, is extensible, and has been extensively tested for over five years. Since many graphics applications use libpng, it is well worth upgrading to the new packages. This is the same issue as in ERISA-2002:030, but these packages now work properly :-) The old ones have been taken down from the server. ------------------------------------------------------------------------- Updated packages: 0e61dffc6a8c889499f11ca12ec4ecf0 libpng-1.0.14-2.src.rpm 6400956bcced20cf66b71faf63ebd612 libpng-1.0.14-2.i386.rpm a8a9b71b272bb162a71f9d15d1c7769f libpng-devel-1.0.14-2.i386.rpm ------------------------------------------------------------------------- References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0728 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0660 ========================================================================= Packages available from ftp://ftp.eridani.co.uk/pub/Aeryn/ or by HTTP from http://ftp.eridani.co.uk/ Packages are signed with our GNU GPG key, also on our FTP site. Users of releases of Eridani Linux prior to 6.3 are advised to download the source RPM and rebuild for their system. Copyright (C)2002 Eridani Star System -- Michael "Soruk" McConnell http://www.eridani.co.uk Eridani Linux -- The Most Up-to-Date Red Hat-based Linux CDROMs Available Email: linux@eridani.co.uk -- Also Debian, Slackware, Mandrake and more... _______________________________________________ Eridani-Announce mailing list To be removed from this list email linux@eridani.co.uk requesting removal.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds