FreeBSD : optipng -- multiple vulnerabilities (8fedf75c-ef2f-11e6-900e-003048f78448)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

ifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote
attackers to cause a denial of service (uninitialized memory read) via
a crafted GIF file.

The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG before
0.7.6 allows remote attackers to cause a denial of service (invalid
memory write and crash) via a series of delta escapes in a crafted BMP
image.

Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c
in OptiPNG before 0.7.6 allows remote attackers to cause a denial of
service (out-of-bounds read or write access and crash) or possibly
execute arbitrary code via a crafted image file.

Off-by-one error in the bmp_rle4_fread function in pngxrbmp.c in
OptiPNG before 0.7.6 allows remote attackers to cause a denial of
service (out-of-bounds read or write access and crash) or possibly
execute arbitrary code via a crafted image file, which triggers a
heap-based buffer overflow.

See also :

http://www.nessus.org/u?4428a592

Solution :

Update the affected package.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 97220 ()

Bugtraq ID:

CVE ID: CVE-2015-7802
CVE-2016-2191
CVE-2016-3981
CVE-2016-3982

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now