Security update for optipng SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:1082-1 Final 1 1 2016-04-17T11:30:32Z current 2016-04-17T11:30:32Z 2016-04-17T11:30:32Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for optipng optipng was updated to fix one security issue. This security issue was fixed: - CVE-2016-2191: Invalid write while processing bitmap images (bsc#973992). - CVE-2016-3981: Heap buffer overflow pngxrbmp.c bmp_read_rows - CVE-2016-3982: Heap buffer overflow pngxrbmp.c bmp_rle4_fread The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html E-Mail link for openSUSE-SU-2016:1082-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 optipng-0.7.5-2.3.2 optipng-debuginfo-0.7.5-2.3.2 optipng-debugsource-0.7.5-2.3.2 optipng-0.7.5-2.3.2 as a component of openSUSE 13.2 optipng-debuginfo-0.7.5-2.3.2 as a component of openSUSE 13.2 optipng-debugsource-0.7.5-2.3.2 as a component of openSUSE 13.2 The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (invalid memory write and crash) via a series of delta escapes in a crafted BMP image. CVE-2016-2191 openSUSE 13.2:optipng-0.7.5-2.3.2 openSUSE 13.2:optipng-debuginfo-0.7.5-2.3.2 openSUSE 13.2:optipng-debugsource-0.7.5-2.3.2 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html https://www.suse.com/security/cve/CVE-2016-2191.html CVE-2016-2191 https://bugzilla.suse.com/973992 SUSE Bug 973992 Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file. CVE-2016-3981 openSUSE 13.2:optipng-0.7.5-2.3.2 openSUSE 13.2:optipng-debuginfo-0.7.5-2.3.2 openSUSE 13.2:optipng-debugsource-0.7.5-2.3.2 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html https://www.suse.com/security/cve/CVE-2016-3981.html CVE-2016-3981 https://bugzilla.suse.com/973992 SUSE Bug 973992 Off-by-one error in the bmp_rle4_fread function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file, which triggers a heap-based buffer overflow. CVE-2016-3982 openSUSE 13.2:optipng-0.7.5-2.3.2 openSUSE 13.2:optipng-debuginfo-0.7.5-2.3.2 openSUSE 13.2:optipng-debugsource-0.7.5-2.3.2 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html https://www.suse.com/security/cve/CVE-2016-3982.html CVE-2016-3982 https://bugzilla.suse.com/973992 SUSE Bug 973992