Lucene search

K
osvGoogleOSV:DSA-1832-1
HistoryJul 13, 2009 - 12:00 a.m.

camlimages - arbitrary code execution

2009-07-1300:00:00
Google
osv.dev
6

Tielei Wang discovered that CamlImages, an open source image processing
library, suffers from several integer overflows which may lead to a
potentially exploitable heap overflow and result in arbitrary code
execution.

For the old stable distribution (etch), this problem has been fixed in
version 2.20-8+etch1.

For the stable distribution (lenny), this problem has been fixed in
version 2.2.0-4+lenny1.

For the unstable distribution (sid), this problem has been fixed in
version 3.0.1-2.

We recommend that you upgrade your camlimages package.

CPENameOperatorVersion
camlimageseq1:2.2.0-4