Secunia
Login
|
|
CVE Reference: CVE-2009-1932 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-1932 |
|
|
Description: Multiple integer overflows in the (1) user_info_callback, (2) user_endrow_callback, and (3) gst_pngdec_task functions (ext/libpng/gstpngdec.c) in GStreamer Good Plug-ins (aka gst-plugins-good or gstreamer-plugins-good) 0.10.15 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PNG file, which triggers a buffer overflow. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA35205 Secunia Advisory: SA35583 Secunia Advisory: SA35777 Secunia Advisory: SA35897 REDHAT http://www.redhat.com/support/errata/RHSA-2009-1123.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10798 OSVDB 54827 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2009:130 GENTOO http://security.gentoo.org/glsa/glsa-200907-11.xml DEBIAN http://www.debian.org/security/2009/dsa-1839 CONFIRM http://cgit.freedesktop.org/gstreamer/gst-plugins-good/commit/?id=d9544bcc44adcef769cbdf7f6453e140058a3adc BID 35172 |
|
| Return to the previous page. |
