CVE-2006-0481

Publication date 31 January 2006

Last updated 17 July 2025

Ubuntu priority

Description

Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent attackers to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
libpng	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected
libpng3	7.04 feisty	Not in release
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected
php5	7.04 feisty	Fixed 5.2.1-0ubuntu1.4
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2006-0481