libpng16-16-1.6.26-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10050 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libpng16-16-1.6.26-1.1 on GA media These are all security issues fixed in the libpng16-16-1.6.26-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10050 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10050 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2010-1205/ SUSE CVE CVE-2010-1205 page https://www.suse.com/security/cve/CVE-2011-2501/ SUSE CVE CVE-2011-2501 page https://www.suse.com/security/cve/CVE-2011-2690/ SUSE CVE CVE-2011-2690 page https://www.suse.com/security/cve/CVE-2011-2691/ SUSE CVE CVE-2011-2691 page https://www.suse.com/security/cve/CVE-2011-2692/ SUSE CVE CVE-2011-2692 page https://www.suse.com/security/cve/CVE-2011-3328/ SUSE CVE CVE-2011-3328 page https://www.suse.com/security/cve/CVE-2013-6954/ SUSE CVE CVE-2013-6954 page https://www.suse.com/security/cve/CVE-2014-0333/ SUSE CVE CVE-2014-0333 page https://www.suse.com/security/cve/CVE-2015-8126/ SUSE CVE CVE-2015-8126 page openSUSE Tumbleweed libpng16-16-1.6.26-1.1 libpng16-16-32bit-1.6.26-1.1 libpng16-compat-devel-1.6.26-1.1 libpng16-compat-devel-32bit-1.6.26-1.1 libpng16-devel-1.6.26-1.1 libpng16-devel-32bit-1.6.26-1.1 libpng16-tools-1.6.26-1.1 libpng16-16-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-16-32bit-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-compat-devel-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-compat-devel-32bit-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-devel-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-devel-32bit-1.6.26-1.1 as a component of openSUSE Tumbleweed libpng16-tools-1.6.26-1.1 as a component of openSUSE Tumbleweed Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row. CVE-2010-1205 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1205.html CVE-2010-1205 https://bugzilla.suse.com/1188284 SUSE Bug 1188284 https://bugzilla.suse.com/617866 SUSE Bug 617866 https://bugzilla.suse.com/622506 SUSE Bug 622506 https://bugzilla.suse.com/639941 SUSE Bug 639941 https://bugzilla.suse.com/854395 SUSE Bug 854395 The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources. CVE-2011-2501 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2501.html CVE-2011-2501 https://bugzilla.suse.com/702578 SUSE Bug 702578 Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_expand function, allows remote attackers to overwrite memory with an arbitrary amount of data, and possibly have unspecified other impact, via a crafted PNG image. CVE-2011-2690 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2690.html CVE-2011-2690 https://bugzilla.suse.com/706387 SUSE Bug 706387 https://bugzilla.suse.com/706388 SUSE Bug 706388 https://bugzilla.suse.com/854395 SUSE Bug 854395 The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image. CVE-2011-2691 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2691.html CVE-2011-2691 https://bugzilla.suse.com/706388 SUSE Bug 706388 The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 does not properly handle invalid sCAL chunks, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted PNG image that triggers the reading of uninitialized memory. CVE-2011-2692 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2692.html CVE-2011-2692 https://bugzilla.suse.com/706389 SUSE Bug 706389 https://bugzilla.suse.com/854395 SUSE Bug 854395 The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certain zero value. CVE-2011-3328 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-3328.html CVE-2011-3328 https://bugzilla.suse.com/720017 SUSE Bug 720017 The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c. CVE-2013-6954 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-6954.html CVE-2013-6954 https://bugzilla.suse.com/856522 SUSE Bug 856522 https://bugzilla.suse.com/873872 SUSE Bug 873872 https://bugzilla.suse.com/873873 SUSE Bug 873873 https://bugzilla.suse.com/877429 SUSE Bug 877429 https://bugzilla.suse.com/877430 SUSE Bug 877430 The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero. CVE-2014-0333 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-0333.html CVE-2014-0333 https://bugzilla.suse.com/866298 SUSE Bug 866298 Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. CVE-2015-8126 openSUSE Tumbleweed:libpng16-16-1.6.26-1.1 openSUSE Tumbleweed:libpng16-16-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-compat-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-1.6.26-1.1 openSUSE Tumbleweed:libpng16-devel-32bit-1.6.26-1.1 openSUSE Tumbleweed:libpng16-tools-1.6.26-1.1 moderate 4.3 AV:L/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8126.html CVE-2015-8126 https://bugzilla.suse.com/954980 SUSE Bug 954980 https://bugzilla.suse.com/958198 SUSE Bug 958198 https://bugzilla.suse.com/960402 SUSE Bug 960402 https://bugzilla.suse.com/962743 SUSE Bug 962743 https://bugzilla.suse.com/963937 SUSE Bug 963937 https://bugzilla.suse.com/969333 SUSE Bug 969333