Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2004-1025

Multiple heap-based buffer overflows in imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service (application crash) and execute arbitrary code via certain image files.

Related bugs and status

CVE-2004-1025 (Candidate) is related to these bugs:

Bug #11113: imlib: Vulnerable to GLSA 200412-03?

Summary				In	Importance	Status
	11113	imlib: Vulnerable to GLSA 200412-03?		Ubuntu	High	Fix Released
	11113	imlib: Vulnerable to GLSA 200412-03?		Debian	Unknown	Fix Released

Bug #11118: imlib: Vulnerable to GLSA 200412-03?

Summary				In	Importance	Status
	11118	imlib: Vulnerable to GLSA 200412-03?		Ubuntu	High	Invalid
	11118	imlib: Vulnerable to GLSA 200412-03?		Debian	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

REDHAT: RHSA-2004:651
BID: 11830
MANDRAKE: MDKSA-2005:007
OVAL: oval:org.mitre.oval:de...