From: Glenn Randers-P. <gl...@gm...> - 2012-07-28 01:43:41
|
CVE-2012-3425 -- is this something new? 2012-04-08 http://vigilance.fr/vulnerability/libpng-denial-of-service-via-png-push-read-zTXt-11791 Looks the same or similar to this CHANGES entry. There's not enough detail in the new report to tell if they are the same: Version 1.5.10 [March 29, 2012] Revised png_set_text_2() to avoid potential memory corruption (fixes CVE-2011-3048). Glenn |