2474 matches found
Qt/imlib buffer overflow
Buffer overflow on BMP files paring...
Mandrake Linux Security Advisory : imlib2 (MDKSA-2004:089)
Marcus Meissner discovered that the imlib and imlib2 libraries are also affected with a similar BMP-related vulnerability as the recent QT updates. The updated imlib and imlib2 packages are patched to protect against this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descripti...
GLSA-200409-12 : ImageMagick, imlib, imlib2: BMP decoding buffer overflows
The remote host is affected by the vulnerability described in GLSA-200409-12 ImageMagick, imlib, imlib2: BMP decoding buffer overflows Due to improper bounds checking, ImageMagick and imlib are vulnerable to a buffer overflow when decoding runlength-encoded bitmaps. This bug can be exploited usin...
CVE-2004-0111
CVE-2004-0111 affects gdk-pixbuf prior to 0.20; processing a malformed BMP can crash the application (denial of service). Debian/Red Hat advisories confirm a fix in newer gdk-pixbuf releases (e.g., RHSA-2004:103 recommends upgrading to a non-vulnerable version such as 0.22). The issue arises in t...
FreeBSD : imlib2 -- BMP decoder buffer overflow (74)
The following package needs to be updated: imlib2 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgba005226fb5b11d89837000c41e2cdad.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
FreeBSD : imlib -- BMP decoder heap buffer overflow (75)
The following package needs to be updated: imlib %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg00644f03fb5811d89837000c41e2cdad.nasl. Disabled on 2011/10/01. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-20...
imlib2 -- BMP decoder buffer overflow
Marcus Meissner discovered that imlib2's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. There appears to be both a stack-based and a heap-based buffer overflow that are believed to be exploitable for arbitrary code executio...
FreeBSD : ImageMagick -- BMP decoder buffer overflow (b6cad7f3-fb59-11d8-9837-000c41e2cdad)
Marcus Meissner discovered that ImageMagick's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...
CVE-2004-0691
The CVE describes a heap-based overflow in the BMP image parser of the Qt3 library (qt3) prior to version 3.3.3. This affects the BMP parsing path and can be triggered remotely through network inputs, potentially crashing the application and possibly allowing arbitrary code execution. A fix is av...
ImageMagick -- BMP decoder buffer overflow
Marcus Meissner discovered that ImageMagick's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability...
imlib -- BMP decoder heap buffer overflow
Marcus Meissner discovered that imlib's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. It is believed that this bug could be exploited for arbitrary code execution...
Fedora Core 2 : qt-3.3.3-0.1 (2004-271)
During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file w...
Fedora Core 1 : qt-3.1.2-14.2 (2004-270)
During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file w...
CESA-2004-004: qt
CESA-2004-004 - rev 3 http://scary.beasts.org/security/CESA-2004-004.txt qt 3.3.2 BMP parser heap overflow error ======================================= Programs: qt, and any programs which use qt to decode BMP files. For example, KDE including konqueror. Severity: Possible compromise of account...
RHEL 2.1 / 3 : qt (RHSA-2004:414)
Updated qt packages that fix security issues in several of the image decoders are now available. Qt is a software toolkit that simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. During a security audit, Chris Evans discovered a heap...
Mandrake Linux Security Advisory : qt3 (MDKSA-2004:085)
Chris Evans discovered a heap-based overflow in the QT library when handling 8-bit RLE encoded BMP files. This vulnerability could allow for the compromise of the account used to view or browse malicious BMP files. On subsequent investigation, it was also found that the handlers for XPM, GIF, and...
Qt - '.bmp' Parsing Bug Heap Overflow
/ heap overflow exploit for qt bmp parsing bug infamous42md AT hotpop DOT com shouts to mitakeet, MB, and peeps @hackaholic ok, pretty standard heap overflow here. we spill across our chunk and overwrite the boundary tag for next chunk. the only problems i had was finding a miserable jump slot to...
security flaw
Heap-based buffer overflow in the BMP image format parser for the QT library qt3 before 3.3.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code...
XV 3.x - .BMP Parsing Local Buffer Overflow
XV 3.x - .BMP Parsing Local Buffer Overflow / xv exploit for the bmp parsing buffer overflow infamous42md AT hotpop DOT com PEOPLE STOP EMAILING MY BUGTRAQ ADDRESS AND USE THIS ONE!! n00batlocalho.outernet gcc -Wall xvbmpslap.c n00batlocalho.outernet ./a.out Usage: ./a.out align...
XV 3.x BMP Parsing Local Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ======================================== Qt BMP Parsing Bug Heap Overflow Exploit ======================================== / heap overflow exploit for qt bmp parsing bug infamous42md AT hotpop DOT com shouts to mitakeet, MB, and peeps...