CVE-2005-2978 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-2978 Interim 1 4 2023-12-09T02:21:05Z current 2021-05-30T12:33:33Z 2023-12-09T02:21:05Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-2978 pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modifying the stack. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XPBG4FXG5CRDFZWGXCTBE6VYIG2U7XOG/#XPBG4FXG5CRDFZWGXCTBE6VYIG2U7XOG E-Mail link for SUSE-SR:2005:024 https://www.suse.com/support/security/rating/ SUSE Security Ratings pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modifying the stack. CVE-2005-2978 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P