CVE-2010-2350 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2350): Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNG file.
from secunia: Solution: Update to version 3.1.1. actually: amd64box ~ # eix ziproxy * net-proxy/ziproxy Available versions: ~3.1.3 {jpeg2k xinetd} Homepage: http://ziproxy.sourceforge.net/ Description: A forwarding, non-caching, compressing web proxy server 3.1.3 is in tree, close it as noglsa. Added <3.1.1 in the summary because time ago was bumped: *ziproxy-3.1.1 (15 Jun 2010) 15 Jun 2010; Samuli Suominen (ssuominen) +ziproxy-3.1.1.ebuild: Version bump wrt #324021.