drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Pufferüberläufe in imlib (Fedora Core 1)
| Name: |
Pufferüberläufe in imlib (Fedora Core 1)
|
|
| ID: |
FEDORA-2004-300 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora Core 1 |
|
| Datum: |
Mo, 13. September 2004, 13:00 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0817 |
|
| Applikationen: |
imlib |
|
Originalnachricht |
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-300
2004-09-09
---------------------------------------------------------------------
Product : Fedora Core 1
Name : imlib
Version : 1.9.13
Release : 15.fc1
Summary : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.
Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.
---------------------------------------------------------------------
Update Information:
Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.
Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues.
---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>
- Security fixes
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
03a77921e2efd86e0703d66de59cad1c SRPMS/imlib-1.9.13-15.fc1.src.rpm
7c819092b3f54e6fba51460f10d4d2db x86_64/imlib-1.9.13-15.fc1.x86_64.rpm
296479ab2f3ebfdb1b43c4454d881009
x86_64/imlib-devel-1.9.13-15.fc1.x86_64.rpm
5b66680b22684df822ef4f38d6e87a35
x86_64/imlib-cfgeditor-1.9.13-15.fc1.x86_64.rpm
f211ba31e2b13a872d0c318b4892c624
x86_64/debug/imlib-debuginfo-1.9.13-15.fc1.x86_64.rpm
8bd4bb9bbcad02a8442edd5bd6afd8f2 i386/imlib-1.9.13-15.fc1.i386.rpm
469d4ed01e2ba0b49fdcd0fa01323052
i386/imlib-devel-1.9.13-15.fc1.i386.rpm
fa26f3f2c7a877c806b675fc8de68203
i386/imlib-cfgeditor-1.9.13-15.fc1.i386.rpm
7d0d786eb8e5ea9793c2505267a2f650
i386/debug/imlib-debuginfo-1.9.13-15.fc1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
|
|
