Secunia reports a hole in Google s Picasa image management and editing software that allows attackers to compromise Windows using specially crafted JPEG images to provoke an integer overflow in the PicasaPhotoViewer.exe file. Google closed the hole in the recently released Picasa 3.6 build-105.41, although Google’s release notes say nothing about a fix. Google’s Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones. Read the full article in The H Security.
Source: https://threatpost.com/google-picasa-heap-overflow-hole-closed-022510/73588/