Launchpad CVE tracker

CVE 2012-4432

Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before 0.7.3 might allow remote attackers to execute arbitrary code via unspecified vectors related to "palette reduction."

Related bugs and status

CVE-2012-4432 (Candidate) is related to these bugs:

Bug #748972: [update request] to version 0.7.5

Summary				In	Importance	Status
	748972	[update request] to version 0.7.5		optipng (Ubuntu)	Wishlist	Fix Released
	748972	[update request] to version 0.7.5		optipng (Debian)	Unknown	Fix Released

Bug #1211093: [removal request] package completely outdated - critical bugfixes dont get implemented

Summary				In	Importance	Status
	1211093	[removal request] package completely outdated - critical bugfixes dont get implemented		optipng (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-4432

References