Login
Newsletter
Werbung

Sicherheit: Pufferüberläufe in imlib2 (Fedora Core 2)
Aktuelle Meldungen Distributionen
Name: Pufferüberläufe in imlib2 (Fedora Core 2)
ID: FEDORA-2004-301
Distribution: Fedora
Plattformen: Fedora Core 2
Datum: Sa, 11. September 2004, 13:00
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0817
Applikationen: imlib

Originalnachricht

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-301
2004-09-09
---------------------------------------------------------------------

Product : Fedora Core 2
Name : imlib
Version : 1.9.13
Release : 19
Summary : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.

Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.

---------------------------------------------------------------------
Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues.
---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- security fixes


---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

c6ed83101974d8283a4013a80e356c08 SRPMS/imlib-1.9.13-19.src.rpm
9f6952bd21d1157b4c10dde7f87b8a3d x86_64/imlib-1.9.13-19.x86_64.rpm
e70a8c0dec245aea672da1f1608e1e33
x86_64/imlib-devel-1.9.13-19.x86_64.rpm
64aa17fe9a0ea4efa9d48020212274c9
x86_64/imlib-cfgeditor-1.9.13-19.x86_64.rpm
48ef8b28ae79d1c7c82974e7f6b77e86
x86_64/debug/imlib-debuginfo-1.9.13-19.x86_64.rpm
d9d04d9df1981e22e45853789a99db19 i386/imlib-1.9.13-19.i386.rpm
9589803f0299131a91bf78ea62cf68c3 i386/imlib-devel-1.9.13-19.i386.rpm
b602fcb2d9d57b87abd57792b17c84c1
i386/imlib-cfgeditor-1.9.13-19.i386.rpm
fe0ab8902a4f20532cea1f1d988add08
i386/debug/imlib-debuginfo-1.9.13-19.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------




--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung