POV-Ray: Newsgroups: povray.programming: libpng Security Vulnerabilities: libpng Security Vulnerabilities

POV-Ray : Newsgroups : povray.programming : libpng Security Vulnerabilities : libpng Security Vulnerabilities		Server Time 18 Jun 2024 07:45:40 EDT (-0400)

From: Ryan Lamansky
Date: 5 Aug 2004 09:32:30
Message: <411236ee$1@news.povray.org>

Read this for more details:

http://www.us-cert.gov/cas/techalerts/TA04-217A.html

POV-Ray 3.6 uses libpng 1.2.5, a vulnerable version.  This means a scene 
file using a PNG image map could potentially contain a malicious 
payload.

Given the vast number of applications that use libpng, this is scary...

-Ryan

Post a reply to this message