Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-4694

Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2010112...
MLIST: [oss-security] 2010112...
MLIST: [oss-security] 2010112...
MLIST: [oss-security] 2010112...
CONFIRM: http://bugs.debian.org...
CONFIRM: http://bugs.gentoo.org...
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2010-0358
GENTOO: GLSA-201101-01
MANDRIVA: MDVSA-2011:009
BID: 45815
SECUNIA: 42796
VUPEN: ADV-2010-3036
VUPEN: ADV-2011-0023
VUPEN: ADV-2011-0107
GENTOO: GLSA-201203-15
CONFIRM: http://cvs.fedoraproje...
CONFIRM: http://cvs.fedoraproje...
XF: gif2png-gif-bo(64754)

Launchpad.net

CVE 2010-4694

Related bugs

References