Date: Thu, 17 May 2007 18:44:15 -0400
From: Foresight Linux Essential Announcement Service <foresight-security-noreply@foresightlinux.org.>
To: foresight-security-announce@lists.rpath.org
Subject: FLEA-2007-0018-1: libpng
X-Enigmail-Version: 0.95.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: antivirus-gw at tyumen.ru
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Foresight Linux Essential Advisory: 2007-0018-1
Published: 2007-05-17
Rating: Minor
Updated Versions:
libpng=/conary.rpath.com@rpl:devel//1/1.2.18-1-0.1
group-dist=/foresight.rpath.org@fl:1-devel//1/1.2.2-0.9-1
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2242http://lwn.net/Articles/232675/
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2445
https://issues.rpath.com/browse/RPL-1381
Description:
Previous versions of the libpng package can cause applications to crash when
loading malformed PNG files. It is not currently known whether this
vulnerability can be exploited to execute malicious code.
- ---
Copyright 2007 Foresight Linux Project
Portions Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.foresightlinux.org/permanent/mit-license.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (GNU/Linux)
iD8DBQFGTNq/0e1Yawpq2XMRAvLkAKDK8z7aVQH/B3Of5oMXWtgNOqnhYgCgmVe7
X/56HurpxqxSKcypAlL441o=
=2dEu
-----END PGP SIGNATURE-----
