FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-3045

This CVE name corresponds to:

Entered Topic
2012-03-22 chromium -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2011-3045
Phase Assigned(20110809)

Description

Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.

References

Source Reference
CONFIRM http://code.google.com/p/chromium/issues/detail?id=116162
CONFIRM http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html
CONFIRM http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b
CONFIRM http://src.chromium.org/viewvc/chrome?view=rev&revision=125311
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=799000
FEDORA FEDORA-2012-3705
FEDORA FEDORA-2012-3739
GENTOO GLSA-201206-15
REDHAT RHSA-2012:0488
SUSE openSUSE-SU-2012:0432
OVAL oval:org.mitre.oval:def:14763
SECTRACK 1026823
SECUNIA 48320
SECUNIA 48485
SECUNIA 48512
SECUNIA 48554
SECUNIA 49660