Описание
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libpng | not-affected | package | ||
| libpng1.6 | fixed | 1.6.16-1 | package | |
| iceweasel | not-affected | package | ||
| icedove | not-affected | package | ||
| texlive-bin | fixed | 2014.20140926.35254-6 | package | |
| texlive-bin | not-affected | squeeze | package | |
| texlive-bin | not-affected | wheezy | package |
Примечания
http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
http://mid.gmane.org/Pine.LNX.4.64.1501101510150.31425@beijing.mitre.org
EPSS
Связанные уязвимости
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
Уязвимость библиотеки libpng, позволяющая нарушителю выполнить произвольный код
EPSS