Summary
The remote host is missing an update to libpng
announced via advisory FEDORA-2009-6603.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update libpng' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-6603
Insight
The libpng package contains a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm.
Libpng should be installed if you need to manipulate PNG format image files.
Update Information:
Update to libpng 1.2.37, to fix CVE-2009-2042. This is a pretty low-risk issue, but it's been classified as a security issue...
ChangeLog:
* Sat Jun 13 2009 Tom Lane 2:1.2.37-1
- Update to libpng 1.2.37, to fix CVE-2009-2042
Related: #504782
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2008-1382, CVE-2009-0040, CVE-2009-2042 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities