Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-24258

CVE-2011-3464 vulnerability in bundled libpng 1.5.4

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Not Evaluated
    • 4.8.2
    • 4.8.0
    • Image formats
    • None
    • 597d5f2288354772d9b8d02e8a6445ad7af10586 ed881474111d635bb90d3e08e9fb70c06d19d48b

    Description

      Quoting http://www.libpng.org/pub/png/libpng.html :

      Vulnerability Warning

      libpng 1.5.4 through 1.5.7 contain a one-byte (stack) buffer-overrun bug in png_formatted_warning(), which could lead to crashes (denial of service) or, conceivably, execution of hostile code. This vulnerability has been assigned ID CVE-2011-3464 and is fixed in version 1.5.8, released 1 February 2012.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            kkalland Kim Motoyoshi Kalland (Inactive)
            beevvy Bartosz Brachaczek
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes