Oval Definition:oval:org.mitre.oval:def:13359
Revision Date:2011-11-21Version:19
Title:DSA-2048-1 dvipng -- buffer overflow
Description:Dan Rosenberg discovered that in dvipng, a utility that converts DVI files to PNG graphics, several array index errors allow context-dependent attackers, via a specially crafted DVI file, to cause a denial of service , and possibly arbitrary code execution. For the stable distribution , this problem has been fixed in version dvipng_1.11-1+lenny1. For the testing distribution , this problem has been fixed in version 1.13-1. For the unstable distribution , this problem has been fixed in version 1.13-1. We recommend that you upgrade your dvipng package.
Family:unixClass:patch
Status:ACCEPTEDReference(s):DSA-2048-1
Platform(s):Debian 5.0
Product(s):dvipng
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture depended section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • vipng DPKG is earlier than 1.11-1+lenny1
    • BACK