Mandriva Linux Security Advisory : libpng (MDVSA-2012:033)
Medium Nessus Plugin ID 58424
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been found and corrected in libpng :
A heap-based buffer overflow flaw was found in the way libpng processed compressed chunks in PNG image files. An attacker could create a specially crafted PNG image file that, when opened, could cause an application using libpng to crash or, possibly, execute arbitrary code with the privileges of the user running the application (CVE-2011-3045).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.