Novell Home

CVE-2013-6954

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-6954 at MITRE

Description

The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (2) a NULL palette, related to pngrtran.c and pngset.c.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)

Novell/SUSE information

Novell Bugzilla entries: 856522, 873872, 873873, 877429, 877430

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Software Development Kit 11 SP3
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9256
SUSE Linux Enterprise Software Development Kit 11 SP3
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9256
SUSE Linux Enterprise Server 11 SP3
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9256
SUSE Linux Enterprise Software Development Kit 11 SP3
  • java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1
Builds
SAT Patch Nr: 9263
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
  • java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1
Builds
SAT Patch Nr: 9263
SUSE Linux Enterprise Server 11 SP3
  • java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1
Builds
SAT Patch Nr: 9263
SUSE Manager 1.7 for SLE 11 SP2
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9258
SUSE Linux Enterprise Server 10 SP4 LTSS for x86
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.8.1
Builds
ZYPP Patch Nr: 8849
SUSE Linux Enterprise Server 10 SP4 LTSS for IBM zSeries 64bit
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1
Builds
ZYPP Patch Nr: 8849
SUSE Linux Enterprise Server 10 SP4 LTSS for AMD64 and Intel EM64T
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-alsa-32bit >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.8.1
  • java-1_6_0-ibm-plugin-32bit >= 1.6.0_sr16.0-0.8.1
Builds
ZYPP Patch Nr: 8849
SUSE Linux Enterprise Desktop 11 SP3
  • java-1_7_0-openjdk >= 1.7.0.6-0.27.1
  • java-1_7_0-openjdk-demo >= 1.7.0.6-0.27.1
  • java-1_7_0-openjdk-devel >= 1.7.0.6-0.27.1
Builds
SAT Patch Nr: 9209
SUSE Linux Enterprise Server 10 SP3 LTSS for x86
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.5.1
Builds
ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 10 SP3 LTSS for IBM zSeries 64bit
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1
Builds
ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 10 SP3 LTSS for AMD64 and Intel EM64T
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-32bit >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-alsa-32bit >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-devel-32bit >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.5.1
  • java-1_6_0-ibm-plugin-32bit >= 1.6.0_sr16.0-0.5.1
Builds
ZYPP Patch Nr: 8848
SUSE Linux Enterprise Server 11 SP1 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP1 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP1 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9273
SUSE Linux Enterprise Server 11 SP2 LTSS
  • java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-alsa >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-plugin >= 1.7.0_sr7.0-0.5.1
Builds
SAT Patch Nr: 9275
SUSE Linux Enterprise Server 11 SP2 LTSS
  • java-1_7_0-ibm >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-devel >= 1.7.0_sr7.0-0.5.1
  • java-1_7_0-ibm-jdbc >= 1.7.0_sr7.0-0.5.1
Builds
SAT Patch Nr: 9275
SUSE Linux Enterprise Server 11 SP2 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-alsa >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9274
SUSE Linux Enterprise Server 11 SP2 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9274
SUSE Linux Enterprise Server 11 SP2 LTSS
  • java-1_6_0-ibm >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-devel >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-fonts >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-jdbc >= 1.6.0_sr16.0-0.3.1
  • java-1_6_0-ibm-plugin >= 1.6.0_sr16.0-0.3.1
Builds
SAT Patch Nr: 9274

© 2014 Novell