Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13366
HistoryJun 30, 2006 - 12:00 a.m.

[OpenPKG-SA-2006.011] OpenPKG Security Advisory (png)

2006-06-3000:00:00
vulners.com
10
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

OpenPKG Security Advisory The OpenPKG Project
http://www.openpkg.org/security/ http://www.openpkg.org
[email protected] [email protected]
OpenPKG-SA-2006.011 28-Jun-2006

Package: png
Vulnerability: buffer overflow
OpenPKG Specific: no

Affected Releases: Affected Packages: Corrected Packages:
OpenPKG CURRENT <= png-1.2.10-20060524 >= png-1.2.12-20060628
OpenPKG 2-STABLE <= png-1.2.10-2.20060622 >= png-1.2.12-2.20060628
OpenPKG 2.5-RELEASE <= png-1.2.8-2.5.0 >= png-1.2.8-2.5.1

Description:
The Portable Network Graphics (PNG) [1] library contains a
vulnerability caused by a potential sprintf(3) related buffer
overflow.

References:
[1] http://www.libpng.org/pub/png/

For security reasons, this advisory was digitally signed with the
OpenPGP public key "OpenPKG <[email protected]>" (ID 63C4CB9F) of the
OpenPKG project which you can retrieve from http://pgp.openpkg.org and
hkp://pgp.openpkg.org. Follow the instructions on http://pgp.openpkg.org
for details on how to verify the integrity of this advisory.

-----BEGIN PGP SIGNATURE-----
Comment: OpenPKG <[email protected]>

iD8DBQFEokMWgHWT4GPEy58RAovyAJ9YScQ3ic8v33m3eJceE1ZUFerj6wCdH4ug
ILZz/r2Efhmw+ykjvBp2Jf4=
=ReUV
-----END PGP SIGNATURE-----

JSON