OVAL Reference oval:com.ubuntu.precise:def:20123425000

Oval Definition:

oval:com.ubuntu.precise:def:20123425000

Revision Date:	2012-08-13	Version:	1
Title:	CVE-2012-3425 on Ubuntu 12.04 LTS (precise) - low.
Description:	The png_push_read_zTXt function in pngpread.c in libpng 1.0.x before 1.0.58, 1.2.x before 1.2.48, 1.4.x before 1.4.10, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-3425
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'chromium-browser' package in precise is not affected (note: 'uses system libpng'). OR NOT While related to the CVE in some way, the 'firefox' package in precise is not affected. OR The 'libpng' package in precise was vulnerable but has been fixed (note: '1.2.46-3ubuntu4.1'). OR NOT While related to the CVE in some way, the 'thunderbird' package in precise is not affected.