Ubuntu Security Notice USN-210-1
18th October, 2005
netpbm-free vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 5.10
- Ubuntu 5.04
- Ubuntu 4.10
Details
A buffer overflow was found in the "pnmtopng" conversion program. By
tricking an user (or automated system) to process a specially crafted
PNM image with pnmtopng, this could be exploited to execute arbitrary
code with the privileges of the user running pnmtopng.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 5.10:
- netpbm
- Ubuntu 5.04:
- netpbm
- Ubuntu 4.10:
- netpbm
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
None