ELBA-2021-14375
- ULN >
- Oracle Linux Errata repository >
- ELBA-2021-14375
ELBA-2021-14375 - pngcheck Bug Fix update
| Type: | BUG |
| Severity: | NA |
| Release Date: | 2021-05-13 |
Description
[2.4.0-8]
- Backport fix for RHBZ#1949800 from upstream release 3.0.3
[2.4.0-7]
- Fix buffer overflow on large MNG LOOP chunk (RHBZ#1908559)
[2.4.0-6]
- Fix a buffer overrun for certain invalid MNG PPLT chunk contents
(RHBZ#1907428).
[2.4.0-5]
- Previous fix for buffer overrun printing the contents of the sPLT chunk in
certain malformed inputs (RHBZ#1905775) was incomplete; it should be properly
fixed now.
[2.4.0-4]
- Bounds-check all accesses into enumerated-value name arrays; a malformed file
could have caused a buffer overrun in several of these cases. (RHBZ#1902810)
- Fix buffer overrun when print_buffer() is passed a nonpositive size, which
can occur in practice for certain malformed inputs. (RHBZ#1902810)
- In some cases, the chunk length from the file data (sz) is used to index into
the read buffer without sufficient bounds-checking, leading to a buffer
overrun. Fix this for PPLT, hIST, sCAL, FRAM, SAVE, nEED, PAST, DISC, DROP,
DBYK, ORDR, and SEEK chunks. (RHBZ#1902810)
- Fix buffer overrun printing the contents of the sPLT chunk in certain
malformed inputs. (RHBZ#1905775)
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
