SuSE9 Security Update : netpbm (YOU Patch Number 11701)
Medium Nessus Plugin ID 41145
SynopsisThe remote SuSE 9 host is missing a security-related patch.
DescriptionThis update fixes a buffer overflow in the RGBA-palette code. The bug can be abused to trigger a denial-or-service attack by feeding untrusted data to 'pnmtopng -alpha' (maybe via a remote service like a CGI, mail user agent, etc.) The execution of arbitrary code is theoretically possible but unlikely. Another possible buffer overflow that can occur while handling a textline has been fixed as well.
This is a reissue of an earlier patch to fix version problems with the previous release.
SolutionApply YOU patch number 11701.