imlib2-loadersSecurity update for imlib2-loadersSecurity update for imlib2-loadersVarious security problems have been fixed in the imlib2
image loaders:
CVE-2006-4809: A stack buffer overflow in loader_pnm.c
could be used by attackers to execute code by supplying a
handcrafted PNM image.
CVE-2006-4808: A heap buffer overflow in loader_tga.c could
potentially be used by attackers to execute code by
supplying a handcrafted TGA image.
CVE-2006-4807: A out of bounds memory read in loader_tga.c
could be used to crash the imlib2 using application with a
handcrafted TGA image.
CVE-2006-4806: Various integer overflows in width*height
calculations could lead to heap overflows which could
potentially be used to execute code. Affected here are the
ARGB, PNG, LBM, JPEG and TIFF loaders.
Additionaly loading of TIFF images on 64bit systems now
works.
This obsoletes a previous update, which had broken JPEG
loading.
Various security problems have been fixed in the imlib2
image loaders:
CVE-2006-4809: A stack buffer overflow in loader_pnm.c
could be used by attackers to execute code by supplying a
handcrafted PNM image.
CVE-2006-4808: A heap buffer overflow in loader_tga.c could
potentially be used by attackers to execute code by
supplying a handcrafted TGA image.
CVE-2006-4807: A out of bounds memory read in loader_tga.c
could be used to crash the imlib2 using application with a
handcrafted TGA image.
CVE-2006-4806: Various integer overflows in width*height
calculations could lead to heap overflows which could
potentially be used to execute code. Affected here are the
ARGB, PNG, LBM, JPEG and TIFF loaders.
Additionaly loading of TIFF images on 64bit systems now
works.
This obsoletes a previous update, which had broken JPEG
loading.
securityimlib2-loadersi5867793a0ef426ecd4ed6d0c7590e18bba41a6c57a5