Amazon Linux AMI : libpng (ALAS-2012-56)
Medium Nessus Plugin ID 69663
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA heap-based buffer overflow flaw was found in the way libpng processed compressed chunks in PNG image files. An attacker could create a specially crafted PNG image file that, when opened, could cause an application using libpng to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2011-3045)
SolutionRun 'yum update libpng' to update your system.