Lucene search
Debian Security Advisory DSA 1493-1 (sdl-image1.2)
🗓️ 15 Feb 2008 00:00:00Reported by Copyright (C) 2008 E-Soft Inc.Type 
openvas🔗 plugins.openvas.org👁 18 Views
Debian Security Advisory DSA 1493-1 sdl-image1.2 buffer overflow vulnerabilities fixe
Show more
| Reporter | Title | Published | Views | Family All 85 |
|---|---|---|---|---|
| Debian Security Advisory DSA 1493-2 (sdl-image1.2) | 19 Mar 200800:00 | – | openvas |
| Debian Security Advisory DSA 1493-1 (sdl-image1.2) | 15 Feb 200800:00 | – | openvas |
| Fedora Update for SDL_image FEDORA-2008-1208 | 16 Feb 200900:00 | – | openvas |
| Gentoo Security Advisory GLSA 200802-01 (sdl-image) | 24 Sep 200800:00 | – | openvas |
| Mandriva Update for SDL_image MDVSA-2008:040 (SDL_image) | 9 Apr 200900:00 | – | openvas |
| Gentoo Security Advisory GLSA 200802-01 (sdl-image) | 24 Sep 200800:00 | – | openvas |
| Fedora Update for SDL_image FEDORA-2008-1231 | 16 Feb 200900:00 | – | openvas |
| Ubuntu Update for sdl-image1.2 vulnerabilities USN-595-1 | 23 Mar 200900:00 | – | openvas |
| Ubuntu: Security Advisory (USN-595-1) | 23 Mar 200900:00 | – | openvas |
| Debian: Security Advisory (DSA-1493-2) | 19 Mar 200800:00 | – | openvas |
10
| Source | Link |
|---|---|
| secure1 | www.secure1.securityspace.com/smysecure/catid.html |
# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.60368");
script_version("2025-01-17T05:37:18+0000");
script_tag(name:"last_modification", value:"2025-01-17 05:37:18 +0000 (Fri, 17 Jan 2025)");
script_tag(name:"creation_date", value:"2008-02-15 23:29:21 +0100 (Fri, 15 Feb 2008)");
script_cve_id("CVE-2007-6697", "CVE-2008-0554", "CVE-2008-0544");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_name("Debian Security Advisory DSA 1493-1 (sdl-image1.2)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 E-Soft Inc.");
script_family("Debian Local Security Checks");
script_xref(name:"URL", value:"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201493-1");
script_tag(name:"insight", value:"Several local/remote vulnerabilities have been discovered in the image
loading library for the Simple DirectMedia Layer 1.2. The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2007-6697
Gynvael Coldwind discovered a buffer overflow in GIF image parsing,
which could result in denial of service and potentially the
execution of arbitrary code.
CVE-2008-0544
It was discovered that a buffer overflow in IFF ILBM image parsing
could result in denial of service and potentially the execution of
arbitrary code.
For the stable distribution (etch), these problems have been fixed in
version 1.2.5-2etch1.
For the old stable distribution (sarge), these problems have been fixed
in version 1.2.4-1etch1. Due to a copy & paste error etch1 was appended
to the version number instead of sarge1. Since the update is otherwise
technically correct, the update was not rebuild to the buildd network.");
script_tag(name:"solution", value:"We recommend that you upgrade your sdl-image1.2 packages.");
script_tag(name:"summary", value:"The remote host is missing an update to sdl-image1.2 announced via advisory DSA 1493-1.
This VT has been deprecated and merged into the VT 'Debian: Security Advisory (DSA-1493)' (OID: 1.3.6.1.4.1.25623.1.0.60574).");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo15 Feb 2008 00:00Current
6.3Medium risk
Vulners AI Score6.3
CVSS210
EPSS0.23835