Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2019-7317: SUSE Linux Security Advisory

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

SUSE: CVE-2019-7317: SUSE Linux Security Advisory

Severity

CVSS

(AV:N/AC:H/Au:N/C:N/I:N/A:P)

Published

02/04/2019

Created

06/04/2019

Added

05/31/2019

Modified

02/04/2022

Description

png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.

Solution(s)

suse-upgrade-java-11-openjdk
suse-upgrade-java-11-openjdk-accessibility
suse-upgrade-java-11-openjdk-demo
suse-upgrade-java-11-openjdk-devel
suse-upgrade-java-11-openjdk-headless
suse-upgrade-java-11-openjdk-javadoc
suse-upgrade-java-11-openjdk-jmods
suse-upgrade-java-11-openjdk-src
suse-upgrade-java-1_7_0-openjdk
suse-upgrade-java-1_7_0-openjdk-demo
suse-upgrade-java-1_7_0-openjdk-devel
suse-upgrade-java-1_7_0-openjdk-headless
suse-upgrade-java-1_7_1-ibm
suse-upgrade-java-1_7_1-ibm-alsa
suse-upgrade-java-1_7_1-ibm-devel
suse-upgrade-java-1_7_1-ibm-jdbc
suse-upgrade-java-1_7_1-ibm-plugin
suse-upgrade-java-1_8_0-ibm
suse-upgrade-java-1_8_0-ibm-alsa
suse-upgrade-java-1_8_0-ibm-devel
suse-upgrade-java-1_8_0-ibm-plugin
suse-upgrade-java-1_8_0-openjdk
suse-upgrade-java-1_8_0-openjdk-accessibility
suse-upgrade-java-1_8_0-openjdk-demo
suse-upgrade-java-1_8_0-openjdk-devel
suse-upgrade-java-1_8_0-openjdk-headless
suse-upgrade-java-1_8_0-openjdk-javadoc
suse-upgrade-java-1_8_0-openjdk-src
suse-upgrade-libpng16-16
suse-upgrade-libpng16-16-32bit
suse-upgrade-libpng16-compat-devel
suse-upgrade-libpng16-compat-devel-32bit
suse-upgrade-libpng16-devel
suse-upgrade-libpng16-devel-32bit
suse-upgrade-libpng16-tools
suse-upgrade-mozillafirefox
suse-upgrade-mozillafirefox-branding-upstream
suse-upgrade-mozillafirefox-buildsymbols
suse-upgrade-mozillafirefox-devel
suse-upgrade-mozillafirefox-translations-common
suse-upgrade-mozillafirefox-translations-other
suse-upgrade-mozillathunderbird
suse-upgrade-mozillathunderbird-buildsymbols
suse-upgrade-mozillathunderbird-translations-common
suse-upgrade-mozillathunderbird-translations-other

References

SUSE-SU-2019:1388-1
SUSE-SU-2019:1398-1
SUSE-SU-2019:1398-2
SUSE-SU-2019:1405-1
SUSE-SU-2019:14160-1
SUSE-SU-2019:14188-1
SUSE-SU-2019:1458-1
SUSE-SU-2019:2002-1
SUSE-SU-2019:2021-1
SUSE-SU-2019:2028-1
SUSE-SU-2019:2036-1
SUSE-SU-2019:2036-2
SUSE-SU-2019:2291-1
SUSE-SU-2019:2336-1
SUSE-SU-2019:2371-1
SUSE-SU-2019:3060-1
SUSE-SU-2019:3060-2
USN-3962-1
USN-3991-1
USN-3991-2
USN-3991-3
USN-3997-1
USN-4080-1
USN-4083-1
CVE-2019-7317

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2019-7317: SUSE Linux Security Advisory

SUSE: CVE-2019-7317: SUSE Linux Security Advisory

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.