|
Family: Red Hat Local Security Checks --> Category: infos
RHSA-2004-180: libpng Vulnerability Scan
Vulnerability Scan Summary Check for the version of the libpng packages
Detailed Explanation for this Vulnerability Test
Updated libpng packages that fix a out of bounds memory access are now
available.
The libpng package contains a library of functions for creating and
manipulating PNG (Portable Network Graphics) image format files.
Steve Grubb discovered a out of bounds memory access flaw in libpng. An
attacker could carefully craft a PNG file in such a way that it would cause
an application linked to libpng to crash when opened by a victim. This
issue may not be used to execute arbitrary code.
Users are advised to upgrade to these updated packages that contain a
backported security fix not vulnerable to this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2004-180.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|