OVAL Reference oval:com.ubuntu.precise:def:20112692000

Oval Definition:

oval:com.ubuntu.precise:def:20112692000

Revision Date:	2011-07-17	Version:	1
Title:	CVE-2011-2692 on Ubuntu 12.04 LTS (precise) - low.
Description:	The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted PNG image that triggers the reading of uninitialized memory.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-2692
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'chromium-browser' package in precise is not affected (note: '14.0.835.202~r103287-0ubuntu1'). OR The 'firefox' package in precise was vulnerable but has been fixed (note: '8.0~b4+build1-0ubuntu2'). OR NOT While related to the CVE in some way, the 'libpng' package in precise is not affected (note: '1.2.46-3ubuntu1').