Viewing all changes in revision 21.
- Committer: Bazaar Package Importer
- Date: 2008-04-22 17:21:41 UTC
- Revision ID: james.westby@ubuntu.com-20080422172141-z7sdyx1xttgsk58b
* SECURITY UPDATE: KHTML's PNG loader can be tricked into
overrunning a heap allocated memory buffer by loading a
specially encoded image. A remote site could cause a denial of
service and possibly execute arbitrary code in the context of
the user.
* Add patch kubuntu_07_khtml_png_loader_memory_overrun.diff from KDE
upstream, adds extra checks to khtml/imload/decoders/pngloader.cpp
* References
http://www.kde.org/info/security/advisory-20080426-1.txt
CVE-2008-1670
overrunning a heap allocated memory buffer by loading a
specially encoded image. A remote site could cause a denial of
service and possibly execute arbitrary code in the context of
the user.
* Add patch kubuntu_07_khtml_png_loader_memory_overrun.diff from KDE
upstream, adds extra checks to khtml/imload/decoders/pngloader.cpp
* References
http://www.kde.org/info/security/advisory-20080426-1.txt
CVE-2008-1670
- files modified:
- debian/changelog
expand all
collapse all
added
removed
