GLSA-201502-10 : libpng: User-assisted execution of arbitrary code
Critical Nessus Plugin ID 81368
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201502-10 (libpng: User-assisted execution of arbitrary code)
Two vulnerabilities have been discovered in libpng:
The png_user_version_check function contains an out-of-bounds memory access error (libpng 1.6.15 Release Notes) The png_combine_row function contains an integer overflow error, which could result in a heap-based buffer overflow (CVE-2014-9495) Impact :
A context-dependent attacker could entice a user to open a specially crafted PNG file using an application linked against libpng, possibly resulting in execution of arbitrary code.
There is no known workaround at this time.
SolutionAll libpng 1.6 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/libpng-1.6.16' All libpng 1.5 users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/libpng-1.5.21'