[CVE-2008-0554] Buffer overflow in readImageData() in giftopnm.c leads to arbitrary code execution
Bug #232156 reported by
Till Ulen
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
netpbm-free (Debian) |
Fix Released
|
Unknown
|
|||
netpbm-free (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
CVE-2008-0554 description:
"Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484."
http://
Debian advisory DSA 1579-1:
http://
This has been fixed in Hardy but previous releases seem to be vulnerable.
CVE References
Changed in netpbm-free: | |
status: | Unknown → Fix Released |
To post a comment you must log in.
A fix for this issue has been released: http:// www.ubuntu. com/usn/ usn-665- 1