[Bug 19702] CVE-2005-3186: Integer overflow in gdk-pixbuf's XPM code

Wed Nov 16 13:55:34 UTC 2005

Please do not reply to this email.  You can add comments at
http://bugzilla.ubuntu.com/show_bug.cgi?id=19702
Ubuntu | gtk+2.0

------- Additional Comments From debzilla at ubuntu.com  2005-11-16 13:55 UTC -------
Message-ID: <20051116124513.GA13517 at bugs.debian.org>
Date: Wed, 16 Nov 2005 13:45:13 +0100
From: Loic Minier <lool at dooz.org>
To: Moritz Muehlenhoff <jmm at inutil.org>, 339431 at bugs.debian.org,
	control at bugs.debian.org
Subject: Re: Bug#339431: CVE-2005-3186: Integer overflow in gdk-pixbuf's XPM code

tags 339431 + patch
thanks

On Wed, Nov 16, 2005, Moritz Muehlenhoff wrote:
> An integer overflow in gdk-pixbuf's XPM rendering code can be exploited
> to overwrite the heap and exploit arbitrary code through crafted images=
.
> Please see www.idefense.com/application/poi/display?id=3D339&type=3Dvul=
nerabilities
> for more details.

 Redhat's bug report for CVE-2005-3186 with a patch attached:
    <https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=3D171071>

 Did you identify other packages with a copy of this code?  In
 particular, did you check Gtk 1?

 The Redhat security advisory also fixes CVE-2005-2975, for which I see
 no entry in the Debian changelog, could you please investifate on this
 id and report whether gtk1 and gtk2 are affected for Debian?

 Redhat's advisories:
    <http://rhn.redhat.com/errata/RHSA-2005-810.html>
    <http://rhn.redhat.com/errata/RHSA-2005-811.html>

 Redhat bug for CVE-2005-2975 with two patches attached:
    <https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=3D171900>

   Cheers,
--=20
Lo=EFc Minier <lool at dooz.org>
"What do we want? BRAINS!    When do we want it? BRAINS!"

-- 
Configure bugmail: http://bugzilla.ubuntu.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.