Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:040: libpng Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libpng package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:040 (libpng).
Steve Grubb discovered that libpng would access memory that is out of bounds
when creating an error message. The impact of this bug is not clear, but it
could lead to a core dump in a program using libpng, or could result in a DoS
(Denial of Service) condition in a daemon that uses libpng to process PNG
The updated packages are patched to correct the vulnerability.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:040
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.