Date: Sun, 4 Jan 2015 22:25:20 +0000 (UTC) From: Eygene Ryabinkin <rea@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r376276 - head/security/vuxml Message-ID: <201501042225.t04MPKJT092758@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: rea Date: Sun Jan 4 22:25:19 2015 New Revision: 376276 URL: https://svnweb.freebsd.org/changeset/ports/376276 QAT: https://qat.redports.org/buildarchive/r376276/ Log: VuXML: document heap overflow in 32-bit builds of libpng Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Sun Jan 4 22:18:02 2015 (r376275) +++ head/security/vuxml/vuln.xml Sun Jan 4 22:25:19 2015 (r376276) @@ -57,6 +57,35 @@ Notes: --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="c564f9bd-8ba7-11e4-801f-0022156e8794"> + <topic>png -- heap overflow for 32-bit builds</topic> + <affects> + <package> + <name>png</name> + <range><ge>1.2.6</ge><lt>1.5.21</lt></range> + <range><ge>1.6</ge><lt>1.6.16</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>32-bit builds of PNG library are vulnerable to an unsigned + integer overflow that is triggered by a crafted wide + interlaced images. + Overflow results in a heap corruption that will crash the + application and may lead to the controlled overwrite of a + selected portions of process address space.</p> + </body> + </description> + <references> + <url>http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt</url>; + <url>http://codelabs.ru/security/vulns/analysis/libpng/2014-dec-libpng-1.6.15/</url>; + </references> + <dates> + <discovery>2014-12-23</discovery> + <entry>2015-01-05</entry> + </dates> + </vuln> + <vuln vid="9575259a-92d5-11e4-bce6-d050992ecde8"> <topic>file -- multiple vulnerabilities</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201501042225.t04MPKJT092758>