FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

imlib -- BMP decoder heap buffer overflow

Affected packages
imlib < 1.9.14_4

Details

VuXML ID 00644f03-fb58-11d8-9837-000c41e2cdad
Discovery 2004-08-25
Entry 2004-08-31
Modified 2004-09-02

Marcus Meissner discovered that imlib's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. It is believed that this bug could be exploited for arbitrary code execution.

References

CVE Name CVE-2004-0817
URL http://bugzilla.gnome.org/show_bug.cgi?id=151034

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.