You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa advancecomp

Sigurnosni nedostatak programskog paketa advancecomp

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2018-03-15 15:26:46.291688

Name : advancecomp
Product : Fedora 27
Version : 2.1
Release : 4.fc27
Summary : Recompression utilities for .PNG, .MNG and .ZIP files
Description :
AdvanceCOMP is a set of recompression utilities for .PNG, .MNG and .ZIP files.
The main features are :
* Recompress ZIP, PNG and MNG files using the Deflate 7-Zip implementation.
* Recompress MNG files using Delta and Move optimization.

This package contains:
* advzip – Recompression and test utility for zip files
* advpng – Recompression utility for png files
* advmng – Recompression utility for mng files
* advdef – Recompression utility for deflate streams in .png, .mng and .gz

Update Information:

Security fix for CVE-2018-1056

[ 1 ] Bug #1542334 – CVE-2018-1056 advancecomp: Heap buffer overflow in allows for denial of service or unspecified impact via crafted ZIP file [fedora-all]
[ 2 ] Bug #1392642 – advancecomp-2.1 is available

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade advancecomp’ at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to

AutorVlatka Misic
Cert idNCERT-REF-2018-03-0001-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa python-django

Otkriveni su sigurnosni nedostaci u programskom paketu python-django za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanjem...