Help the PSP 3D community grow!
Vote for us below:
| | Homebrew/Hacking - Discuss the latest available homebrew applications and games. |
Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!
You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.
Registration is fast, simple, and absolutely free so join our community today!
|
 | 
07-28-2006, 07:04 AM
|  | Senior Member | | Join Date: Dec 2005
Posts: 307
Points: 1.75 Donate | |  zlib and libpng exploits found recently
zlib
* Eliminate a potential security vulnerability when decoding invalid compressed data
* Eliminate a potential security vulnerability when decoding specially crafted compressed data
* Fix a bug when decompressing dynamic blocks with no distance codes
* Fix crc check bug in gzread() after gzungetc()
* Do not return an error when using gzread() on an empty file
these are the fixes that are in the new zlib update that sony has not used
libpng
(not shure witch bugs are fix or not)
*Broken-Image Warning
Versions 1.2.6 and 1.0.16 can write an invalid zlib header within the PNG datastream. This is not quite as bad as it sounds since the two-byte header can be corrected fairly easily (e.g., use pngcrush to rewrite the images and, perhaps, compress them slightly better), but some applications will display the images incorrectly. Microsoft Word and Internet Explorer are known to be affected. A libpng patch is available, and versions 1.2.7 and 1.0.17 (incorporating the fix) were released on 11 September 2004.
*Crash Warning
Versions 1.2.7, 1.2.6, 1.0.17, and 1.0.16 have a bug that will cause applications that strip the alpha channel (while reading a PNG) to crash. The bug is fixed in versions 1.2.8 and 1.0.18, which were released on 3 December 2004.
* On 4 August 2004 a new jumbo security patch was released to address several potential vulnerabilities in libpng, at least one of which is quite serious. It was followed on 15 August by the full libpng 1.2.6 and libpng 1.0.16 releases, which, like subsequent releases, incorporate the fix. All users are strongly urged to upgrade to the latest release of libpng or to patch any affected applications as soon as possible. (Graphical browsers and e-mail clients are particularly at risk.) Get the latest releases or an appropriate combo patch either from SourceForge (headings 1.2.5-security-patches and 1.2.5and-older-sec-patchs) or from Simple Systems.
Here's the CERT advisory, along with the relevant CERT and CVE vulnerability pages:
* CERT VU#388984 (CVE CAN-2004-0597) (this is the serious one!)
* CERT VU#160448 (CVE CAN-2004-0599)
* CERT VU#236656 (CVE CAN-2004-0598)
* CERT VU#286464 (CVE CAN-2004-0599)
* CERT VU#477512 (CVE CAN-2004-0599)
* CERT VU#817368 (CVE CAN-2004-0597)  |
07-28-2006, 07:10 AM
|  | Senior Member | | Join Date: Mar 2006 Location: Portugal Age: 15
Posts: 358
Points: 2.08 Donate | | | this r good things....but we dont know if this is useful for the psp...lets wait until someone test this |
07-28-2006, 08:14 AM
|  | Banned | | Join Date: Dec 2005 Location: Portugal
Posts: 194
Points: 2.75 Donate | | This exploit is for PSP ? Quote: |
Versions 1.2.7, 1.2.6, 1.0.17, and 1.0.16
| What versions ?  |
07-28-2006, 08:16 AM
|  | Senior Member
My Mood:  | | Join Date: Nov 2005 Location: Arizona Age: 17
Posts: 1,731
Points: 491.68 Donate | | Quote: |
Originally Posted by hbarroso This exploit is for PSP ? What versions ? | I think he just meant new picture exploits found, not specifically for psp. |
07-28-2006, 08:23 AM
| | | Banned | | Join Date: Dec 2005 Location: Portugal
Posts: 194
Points: 2.75 Donate | | | Oh ok thanks |
07-28-2006, 11:37 AM
|  | Junior Member | | | | | well some 1 shud test themlol i have a 1.5 and a 2.71 and that wud be sweet if we found a downgrader
__________________ My Stuff...
Psp 1000 1.5
Psp 1001 2.71
Need for Speed Most Wanted 5-1-0
SSX On Tour 
NBA 06  Nba Live 06 Madden 06; Gripshift  Syphon Filter Dark Mirror  
1gb ms 512 ms 120+ LEGAL "Backups"...lol 
........ Greatest Moment............. Kobe Bryant Scores 81 Points... |
07-28-2006, 11:44 AM
|  | Senior Member | | Join Date: Jun 2006 Location: Sävedalen
Posts: 124
Points: 0.20 Donate | | Quote: |
Originally Posted by auAKAflorida well some 1 shud test themlol i have a 1.5 and a 2.71 and that wud be sweet if we found a downgrader | It's not really that simple to make a dg...gosh
__________________    
PSP 2.5 ---> 1.5 ---> 2.00 ---> 1.5
GTA:LCS
Ridge Racer
Metal Gear Ac!d | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is Off
Points Per Thread View: 0.00 Points Per Thread: 1.00 Points Per Reply: 0.10 | | | | |
