8 matches found
CVE-2004-0827
CVE-2004-0827 affects ImageMagick 5.x before 5.4.4 and 6.x before 6.0.6.2, with remote denial of service and potential arbitrary code execution via malformed AVI, BMP, or DIB files. Multiple connected advisories (Ubuntu USN-35-1, Debian DSA 547-1, Red Hat RHSA-2004:480/636, etc.) corroborate buff...
CVE-2004-1026
CVE-2004-1026 involves multiple integer overflows in the image handler of the imlib library (versions up to 1.9.14 and earlier) that is used by gkrellm and several window managers. The issue, documented across OpenVAS and Gentoo GLSA entries, is rooted in the image processing code and can be trig...
CVE-2004-0817
CVE-2004-0817 describes multiple heap-based buffer overflows in the imlib BMP image handler that allow remote attackers to execute arbitrary code via a crafted BMP file. Connected advisories confirm the affected component is imlib/imlib2 BMP decoding code and reference vendor/security updates (e....
CVE-2004-1025
CVE-2004-1025 concerns multiple heap-based buffer overflows in imlib 1.9.14 and earlier, a library used by gkrellm and several window managers. The vulnerability allows remote attackers to crash the application and, per the description, to execute arbitrary code via crafted image files, effective...
CVE-2004-0802
CVE-2004-0802 affects imlib2’s BMP loader and is caused by a buffer overflow in the BMP loading path. The vulnerability allows remote attackers to execute arbitrary code by delivering a specially crafted BMP image, and it is confined to imlib2 versions before 1.1.2 (distinct from CVE-2004-0817). ...
CVE-2002-0143
The CVE-2002-0143 issue is a local buffer overflow in Eterm of Enlightenment Imlib2 (versions ≤ 1.0.4) caused by a long HOME environment variable. Exploit details and mitigations are not provided in the connected documents; no further remediation is specified.
CVE-2002-0167
The CVE-2002-0167 issue affects Imlib prior to 1.9.13, where loading images via NetPBM could trigger a crash or, in some cases, execute arbitrary code due to weaknesses in NetPBM. Connected Red Hat advisory RHSA-2002:048 confirms that Imlib versions before 1.9.13 fall back to NetPBM for untrusted...
CVE-2002-0168
CVE-2002-0168 affects Imlib up to version 1.9.12 (before 1.9.13). The vulnerability arises from how arguments passed to malloc may cause a heap corruption, enabling a denial of service and potentially arbitrary code execution when untrusted images are loaded. Public advisories (Mandrake MDKSA-200...