Security update for optipng
This update for optipng fixes the following issues:
Security issue fixed:
- CVE-2017-1000229: Fix integer overflow bug in function minitiff_read_info() allows an attacker to remotely execute code or cause denial of service (boo#1068720).
- CVE-2017-16938: Fix a global buffer overflow that allows attackers to cause DoS via a maliciously crafted GIF file (bsc#1069774).
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1068720
VUL-0: CVE-2017-1000229: optipng: Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.
bnc#1069774
VUL-0: CVE-2017-16938: optipng: A global buffer overflow allows attackers to cause DoS via a maliciously crafted GIF file
