Oval Definition:
oval:org.mitre.oval:def:22592
Revision Date
:
2014-05-26
Version
:
20
Title
:
ELSA-2007:0356: libpng security update (Moderate)
Description
:
The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.17 allows remote attackers to cause a denial of service (application crash) via a grayscale PNG image with a bad tRNS chunk CRC value.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2006-5793
CVE-2007-2445
ELSA-2007:0356-03
Platform(s)
:
Oracle Linux 5
Product(s)
:
libpng
libpng10
Definition Synopsis
Oracle Linux 5.x
AND
rpm test
libpng is earlier than 2:1.2.10-7.0.2
OR
libpng-devel is earlier than 2:1.2.10-7.0.2
BACK