Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-2660

Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to (1) crafted GIF files (gifread.c) and (2) crafted JPEG files (jpegread.c), a different vulnerability than CVE-2009-2295.

Related bugs and status

CVE-2009-2660 (Candidate) is related to these bugs:

Bug #411024: Sync camlimages 1:3.0.1-3 (universe) from Debian unstable (main).

Summary				In	Importance	Status
	411024	Sync camlimages 1:3.0.1-3 (universe) from Debian unstable (main).		camlimages (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2009072...
CONFIRM: https://bugs.gentoo.or...
CONFIRM: https://bugs.gentoo.or...
BID: 35999
CONFIRM: ftp://ftp.debian.org/d...
CONFIRM: ftp://ftp.debian.org/d...
CONFIRM: ftp://ftp.debian.org/d...
CONFIRM: http://bugs.debian.org...
CONFIRM: http://camlcvs.inria.f...
CONFIRM: http://security.debian...
CONFIRM: http://security.debian...
DEBIAN: DSA-1857
DEBIAN: DSA-1912
SECUNIA: 37067
XF: camlimages-gifread-jpe...