The libungif package contains a shared library of functions for loading and
saving GIF format image files.
Several bugs in the way libungif decodes GIF images were discovered. An
attacker could create a carefully crafted GIF image file in such a way that
it could cause an application linked with libungif to crash or execute
arbitrary code when the file is opened by a victim. The Common
Vulnerabilities and Exposures project has assigned the names CVE-2005-2974
and CVE-2005-3350 to these issues.
All users of libungif are advised to upgrade to these updated packages,
which contain backported patches that resolve these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | s390 | libungif-progs | < 4.1.3-1.el4.2 | libungif-progs-4.1.3-1.el4.2.s390.rpm |
RedHat | 4 | ppc64 | libungif | < 4.1.3-1.el4.2 | libungif-4.1.3-1.el4.2.ppc64.rpm |
RedHat | 4 | ia64 | libungif-progs | < 4.1.3-1.el4.2 | libungif-progs-4.1.3-1.el4.2.ia64.rpm |
RedHat | 4 | s390x | libungif-progs | < 4.1.3-1.el4.2 | libungif-progs-4.1.3-1.el4.2.s390x.rpm |
RedHat | 4 | ppc | libungif-progs | < 4.1.3-1.el4.2 | libungif-progs-4.1.3-1.el4.2.ppc.rpm |
RedHat | any | ia64 | libungif-progs | < 4.1.0-9.5 | libungif-progs-4.1.0-9.5.ia64.rpm |
RedHat | 4 | x86_64 | libungif | < 4.1.3-1.el4.2 | libungif-4.1.3-1.el4.2.x86_64.rpm |
RedHat | 3 | i386 | libungif | < 4.1.0-15.el3.3 | libungif-4.1.0-15.el3.3.i386.rpm |
RedHat | any | ia64 | libungif-devel | < 4.1.0-9.5 | libungif-devel-4.1.0-9.5.ia64.rpm |
RedHat | 4 | ia64 | libungif | < 4.1.3-1.el4.2 | libungif-4.1.3-1.el4.2.ia64.rpm |