Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:12491
HistoryOct 20, 2009 - 12:00 a.m.

CamlImages JPEG处理远程缓冲区溢出漏洞

2009-10-2000:00:00
Root
www.seebug.org
12

0.046 Low

EPSS

Percentile

91.7%

JSON

Bugraq ID: 36713
CVE ID:CVE-2009-3296

CamlImages是一款开放源代码的图像处理库。
CamlImages存在多个整数溢出,可导致可利用的堆溢出,可以应用程序权限执行任意指令。
处理TIFF和JPEG图像文件都存在此漏洞。

CamlImages 2.2
厂商解决方案
Debian linux可参考如下升级程序:
Debian Linux 4.0 amd64
Debian libcamlimages-ocaml_2.20-8+etch1_amd64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_amd64.deb
Debian libcamlimages-ocaml_2.20-8+etch2_amd64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_amd64.deb
Debian libcamlimages-ocaml_2.20-8+etch3_amd64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_amd64.deb
Debian Linux 4.0 ia-32
Debian libcamlimages-ocaml_2.20-8+etch1_i386.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_i386.deb
Debian libcamlimages-ocaml_2.20-8+etch2_i386.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_i386.deb
Debian libcamlimages-ocaml_2.20-8+etch3_i386.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_i386.deb
Debian Linux 4.0 arm
Debian libcamlimages-ocaml_2.20-8+etch1_arm.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_arm.deb
Debian libcamlimages-ocaml_2.20-8+etch2_arm.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_arm.deb
Debian libcamlimages-ocaml_2.20-8+etch3_arm.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_arm.deb
Debian Linux 4.0 hppa
Debian libcamlimages-ocaml_2.20-8+etch1_hppa.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_hppa.deb
Debian libcamlimages-ocaml_2.20-8+etch2_hppa.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_hppa.deb
Debian libcamlimages-ocaml_2.20-8+etch3_hppa.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_hppa.deb
Debian Linux 4.0 sparc
Debian libcamlimages-ocaml_2.20-8+etch1_sparc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_sparc.deb
Debian libcamlimages-ocaml_2.20-8+etch2_sparc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_sparc.deb
Debian libcamlimages-ocaml_2.20-8+etch3_sparc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_sparc.deb
Debian Linux 4.0 powerpc
Debian libcamlimages-ocaml_2.20-8+etch1_powerpc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_powerpc.deb
Debian libcamlimages-ocaml_2.20-8+etch2_powerpc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_powerpc.deb
Debian libcamlimages-ocaml_2.20-8+etch3_powerpc.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_powerpc.deb
Debian Linux 4.0 alpha
Debian libcamlimages-ocaml_2.20-8+etch1_alpha.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_alpha.deb
Debian libcamlimages-ocaml_2.20-8+etch2_alpha.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_alpha.deb
Debian libcamlimages-ocaml_2.20-8+etch3_alpha.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_alpha.deb
Debian Linux 4.0 mipsel
Debian libcamlimages-ocaml_2.20-8+etch1_mipsel.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_mipsel.deb
Debian libcamlimages-ocaml_2.20-8+etch2_mipsel.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_mipsel.deb
Debian libcamlimages-ocaml_2.20-8+etch3_mipsel.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_mipsel.deb
Debian Linux 4.0 ia-64
Debian libcamlimages-ocaml_2.20-8+etch1_ia64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_ia64.deb
Debian libcamlimages-ocaml_2.20-8+etch2_ia64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_ia64.deb
Debian libcamlimages-ocaml_2.20-8+etch3_ia64.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_ia64.deb
Debian Linux 4.0 mips
Debian libcamlimages-ocaml_2.20-8+etch1_mips.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_mips.deb
Debian libcamlimages-ocaml_2.20-8+etch2_mips.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch2_mips.deb
Debian libcamlimages-ocaml_2.20-8+etch3_mips.deb
http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch3_mips.deb

Related

fedora 2
openvas 12
prion 1
cve 1
debiancve 1
nessus 4
ubuntucve 1
debian 2
securityvulns 2
gentoo 1
fedora
fedora
[SECURITY] Fedora 10 Update: ocaml-camlimages-3.0.1-3.fc10.3
2009-11-10 17:48:14
[SECURITY] Fedora 11 Update: ocaml-camlimages-3.0.1-7.fc11.3
2009-11-10 17:44:02
openvas
openvas
Fedora Core 11 FEDORA-2009-10594 (ocaml-camlimages)
2009-11-17 00:00:00
Fedora Core 10 FEDORA-2009-10568 (ocaml-camlimages)
2009-11-17 00:00:00
Fedora Core 10 FEDORA-2009-10568 (ocaml-camlimages)
2009-11-17 00:00:00
prion
prion
Integer overflow
2009-10-20 17:30:00
cve
cve
CVE-2009-3296
2009-10-20 17:30:00
debiancve
debiancve
CVE-2009-3296
2009-10-20 17:30:00
nessus
nessus
Fedora 11 : ocaml-camlimages-3.0.1-7.fc11.3 (2009-10594)
2009-11-11 00:00:00
Fedora 10 : ocaml-camlimages-3.0.1-3.fc10.3 (2009-10568)
2009-11-11 00:00:00
Debian DSA-1912-1 : camlimages - integer overflow
2010-02-24 00:00:00
ubuntucve
ubuntucve
CVE-2009-3296
2009-10-20 00:00:00
debian
debian
[SECURITY] [DSA 1912-2] New advi packages fix arbitrary code execution
2009-10-23 23:50:26
[SECURITY] [DSA 1912-1] New camlimages fix arbitrary code execution
2009-10-16 10:31:46
securityvulns
securityvulns
[SECURITY] [DSA 1912-2] New advi packages fix arbitrary code execution
2009-10-26 00:00:00
CamlImages library integer overflows
2009-10-26 00:00:00
gentoo
gentoo
CamlImages: User-assisted execution of arbitrary code
2010-06-01 00:00:00

0.046 Low

EPSS

Percentile

91.7%

JSON
Related for SSV:12491
fedora2openvas12prion1cve1debiancve1nessus4ubuntucve1debian2securityvulns2gentoo1