Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 866233 (CVE-2020-35511) - media-gfx/pngcheck: global buffer overflow
Summary: media-gfx/pngcheck: global buffer overflow
Status: CONFIRMED
Alias: CVE-2020-35511
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://www.libpng.org/pub/png/apps/pn...
Whiteboard: ??
Keywords:
Depends on:
Blocks:
 
Reported: 2022-08-24 00:01 UTC by John Helmert III
Modified: 2022-08-24 00:01 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-08-24 00:01:21 UTC
CVE-2020-35511:

A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.

Of course, I have no idea if we're affected or what this even is. I've
asked RedHat for clarification.