Oval Definition:	oval:com.ubuntu.precise:def:20113045000
Revision Date: 2012-03-22 Version: 1 Title: CVE-2011-3045 on Ubuntu 12.04 LTS (precise) - medium. Description: Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-3045 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'chromium-browser' package in precise is not affected (note: 'uses system libpng'). OR NOT While related to the CVE in some way, the 'firefox' package in precise is not affected. OR The 'libpng' package in precise was vulnerable but has been fixed (note: '1.2.46-3ubuntu3'). OR NOT While related to the CVE in some way, the 'thunderbird' package in precise is not affected.
BACK