Developers have plugged a critical hole in a PNG reference library used by many browsers to render graphics file.

The 1.2.44 and 1.4.3 updates [1] to the libpng open source reference library address a bug that, left unfixed, created a mechanism for hackers to inject code onto vulnerable systems.

Older versions of the Portable Network Graphics (PNG) format library contained a buffer overflow-style flaw.

The bug was discovered by developers at Mozilla. It's unclear which browsers [2] supported the vulnerable library files.

Previous problems involving the rendering of PNG files have spawned drive-by download attacks, so the resolution of the latest problem at an early stage is to be welcomed.

In related news, developers also fixed a similar flaw in the libtiff library. Version 3.9.4 of the libtiff library plugs a buffer overflow bug that might be abused by specially crafted SubjectDistance tags, H Security reports [3]. ®

Links

1. http://sourceforge.net/projects/libpng/files/
2. http://www.libpng.org/pub/png/pngapbr.html
3. http://www.h-online.com/security/news/item/Critical-hole-closed-in-PNG-reference-library-1030043.html

Related stories

• WinAmp update fades out critical media player flaws (21 December 2009)

  http://www.theregister.co.uk/2009/12/21/winamp_update/

• Apple fixes critical Mac holes triggered by image files (6 August 2009)

  http://www.theregister.co.uk/2009/08/06/apple_mac_osx_patches/

• Firefox update tackles critical memory bugs (5 March 2009)

  http://www.theregister.co.uk/2009/03/05/firefox_update/

• Apple patches security hole in QuickTime (2 May 2007)

  http://www.theregister.co.uk/2007/05/02/apple_quicktime_patch/