This bug was fixed in the package libpng - 1.2.27-1ubuntu0.1
---------------
libpng (1.2.27-1ubuntu0.1) intrepid-security; urgency=low
* SECURITY UPDATE: denial of service and possible execution of arbitrary
code via crafted image (LP: #338027)
- debian/patches/02-CVE-2009-0040.diff: initialize pointers in pngread.c,
pngrtans.c, pngset.c and example.c
- CVE-2009-0040
* SECURITY UPDATE: denial of service via off-by-one error
- debian/patches/02-CVE-2008-3964.diff: shorten tIME_string to 29 bytes in
pngtest.c
- CVE-2008-3964
* SECURITY UPDATE: denial of service via incorrect memory assignment
(LP: #324258)
- debian/patches/02-CVE-2008-5907.diff: update pngwutil.c to properly set
new_key to NULL string
- CVE-2008-5907
* debian/rules: Work around missing definition of ECHO. Backported from
1.2.27-2ubuntu1
-- Jamie Strandboge <[email protected]> Thu, 05 Mar 2009 07:37:05
-0600
--
[CVE-2008-5907] libpng: png_check_keyword() in pngwutil.c might allow
overwriting arbitrary memory location
https://bugs.launchpad.net/bugs/324258
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
