18 matches found
SuSE 10 Security Update : imlib2 (ZYPP Patch Number 5832)
A security problem was fixed in imlib2 where loading a specific XPM file could corrupt memory. CVE-2008-5187 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
openSUSE Security Update : imlib2 (imlib2-318)
A security problem was fixed in imlib2 where loading a specific XPM file could corrupt memory. CVE-2008-5187 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update imlib2-318. The text description of...
Fedora 10 : imlib2-1.4.2-2.fc10 (2008-10364)
Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Mandrake Security Advisory MDVSA-2009:019 (imlib2)
The remote host is missing an update to imlib2 announced via advisory MDVSA-2009:019. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Gentoo Security Advisory GLSA 200812-23 (imlib2)
The remote host is missing updates announced in advisory GLSA 200812-23. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1672-1 (imlib2)
The remote host is missing an update to imlib2 announced via advisory DSA 1672-1. OpenVAS Vulnerability Test $Id: deb16721.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1672-1 imlib2 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian: Security Advisory (DSA-1672-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[Full-disclosure] [USN-683-1] Imlib2 vulnerability
=========================================================== Ubuntu Security Notice USN-683-1 December 02, 2008 imlib2 vulnerability CVE-2008-5187 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu...
openSUSE 10 Security Update : imlib2 (imlib2-5804)
A security problem was fixed in imlib2 where loading a specific XPM file could corrupt memory. CVE-2008-5187 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update imlib2-5804. The text description o...
Debian DSA-1672-1 : imlib2 - buffer overflow
Julien Danjou and Peter De Wachter discovered that a buffer overflow in the XPM loader of Imlib2, a powerful image loading and rendering library, might lead to arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin wer...
[SECURITY] [DSA 1672-1] New imlib2 packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1672-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 29, 2008 http://www.debian.org/security/faq -...
Fedora 9 : imlib2-1.4.2-2.fc9 (2008-10287)
Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...
Fedora 8 : imlib2-1.4.2-2.fc8 (2008-10296)
Sun Nov 23 2008 Tomas Smetana 1.4.2-2 - patch for CVE-2008-5187 - Thu Oct 23 2008 Tomas Smetana 1.4.2-1 - new upstream version - Fri May 30 2008 Tomas Smetana 1.4.0-7 - patch for CVE-2008-2426 - Tue Mar 11 2008 Hans de Goede 1.4.0-6 - Disable amd64 assembly optimization. Kills idesk - 222998,...
FreeBSD Ports: imlib2, imlib2-nox11
The remote host is missing an update to the system as announced in the referenced advisory. VID 910486d5-ba4d-11dd-8f23-0019666436c2 OpenVAS Vulnerability Test $ Description: Auto generated from VID 910486d5-ba4d-11dd-8f23-0019666436c2 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: imlib2, imlib2-nox11
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2008-5187
The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability...
CVE-2008-5187
The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability...
CVE-2008-5187
CVE-2008-5187 affects imlib2 up to at least 1.4.2, where the XPM loader’s load function can crash or potentially allow code execution via a crafted XPM, caused by a pointer arithmetic error leading to a heap-based buffer overflow. Concrete details in connected advisories confirm this vulnerabilit...