Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2008-5262

Multiple stack-based buffer overflows in the iGetHdrHeader function in src-IL/src/il_hdr.c in DevIL 1.7.4 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE file.

Related bugs and status

CVE-2008-5262 (Candidate) is related to these bugs:

Bug #603689: [Security] devil - Fix buffer overflows

		In	Importance	Status
603689	[Security] devil - Fix buffer overflows	devil (Ubuntu)	Undecided	Invalid
603689	[Security] devil - Fix buffer overflows	devil (Ubuntu Jaunty)	Medium	Invalid
603689	[Security] devil - Fix buffer overflows	devil (Ubuntu Karmic)	Medium	Invalid
603689	[Security] devil - Fix buffer overflows	devil (Ubuntu Hardy)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/sec...
BID: 33231
SECUNIA: 33470
FEDORA: FEDORA-2009-0856
SECUNIA: 33637
DEBIAN: DSA-1717
SECUNIA: 33801