FEDORA-EPEL-2015-26f2bb9749 created by pghmcfc 4 years ago for Fedora EPEL 6
stable

An underflow read was found in png_check_keyword in libpng10. An attacker could possibly use this flaw to cause an out-of-bounds read by tricking an unsuspecting user into processing a specially crafted PNG image.


The fix for CVE-8126 was incomplete in the previous 1.0.64 update.

This update has been submitted for testing by pghmcfc.

4 years ago

This update has obsoleted libpng10-1.0.65-1.el6, and has inherited its bugs and notes.

4 years ago

This update has been pushed to testing.

4 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by pghmcfc.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1281756 CVE-2015-8126 CVE-2015-8472 libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
0
0
BZ#1281759 CVE-2015-8126 libpng10: libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions [epel-6]
0
0
BZ#1288264 libpng10-1.0.65 is available
0
0
BZ#1291312 CVE-2015-8540 libpng: underflow read in png_check_keyword()
0
0
BZ#1291318 CVE-2015-8540 libpng10: libpng: underflow read in png_check_keyword() [epel-6]
0
0
BZ#1292648 libpng10-1.0.66 is available
0
0

Automated Test Results