Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235416
Summary: CVE-2004-1025, CVE-2004-1026: imlib integer/buffer overflows Product: Fedora Extras Version: fc6 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: medium Component: imlib AssignedTo: paul@city-fan.org ReportedBy: ville.skytta@iki.fi QAContact: extras-qa@fedoraproject.org CC: fedora-security-list@redhat.com
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-1025 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-1026
These two old issues appear to be still present in FE6 (1.9.13-*) and devel (1.9.15-*) imlib packages. Bug 138516 contains a test case XPM as well as a patch which should fix these issues.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2004-1025, CVE-2004-1026: imlib integer/buffer overflows
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235416
------- Additional Comments From paul@city-fan.org 2007-04-10 13:15 EST ------- It is unfortunate that the security fixes that went into RHEL4 in November 2004 didn't make it into the Fedora Core package at that time.
I've verified that the test pixmap crashes the current imblib (using qiv) and that the patch from Bug #138516 fixes it.
I've now incorporated that patch in that bug into the 1.9.15-2 package on devel, and updated FC-6 from 1.9.13-* to 1.9.15-2, which I believe will resolve this problem for FC-6 onwards. FC-5 (1:1.9.13-27) is probably still vulnerable. According to comment #2 in Bug #138522 FC-4 included a fix but I've just tried the test pixmap and it crashes qiv on an FC-4 box.
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2004-1025, CVE-2004-1026: imlib integer/buffer overflows
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235416
mattdm@mattdm.org changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |mattdm@mattdm.org
------- Additional Comments From mattdm@mattdm.org 2007-04-10 13:50 EST -------
It is unfortunate that the security fixes that went into RHEL4 in November 2004 didn't make it into the Fedora Core package at that time.
Sadly, this is a perennial problem with Fedora. :(
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2004-1025, CVE-2004-1026: imlib integer/buffer overflows
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235416
paul@city-fan.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |CURRENTRELEASE Fixed In Version| |1.9.15-2
security@lists.fedoraproject.org
-
Red Hat Bugzilla