Synopsis: Important: cairo security update
Issue date: 2007-11-29
CVE Names: CVE-2007-5503
An integer overflow flaw was found in the way Cairo processes PNG images.
If an application linked against Cairo processes a malicious PNG image, it
is possible to execute arbitrary code as the user running the application.
(CVE-2007-5503)
SL 5.x
SRPMS:
cairo-1.2.4-3.el5_1.src.rpm
i386:
cairo-1.2.4-3.el5.i386.rpm
cairo-devel-1.2.4-3.el5.i386.rpm
x86_64:
cairo-1.2.4-3.el5.i386.rpm
cairo-1.2.4-3.el5.src.rpm
cairo-1.2.4-3.el5.x86_64.rpm
cairo-devel-1.2.4-3.el5.i386.rpm
cairo-devel-1.2.4-3.el5.x86_64.rpm
-Connie Sieh
-Troy Dawson