Ubuntu
imlib2 package

libimlib2: BMP remote heap overflow in imlib2

Bug #7937 reported by Debian Bug Importer
4
Affects Status Importance Assigned to Milestone
imlib2 (Debian)
Fix Released
Unknown
imlib2 (Ubuntu)
Fix Released
High
Martin Pitt

Bug Description

Automatically imported from Debian bug report #271375 http://bugs.debian.org/271375

See original description
Revision history for this message
Debian Bug Importer (debzilla) wrote :

Automatically imported from Debian bug report #271375 http://bugs.debian.org/271375

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <E1C6bC3-0000kw-Vy@legolas>
Date: Sun, 12 Sep 2004 22:43:27 +0200
From: Moritz Muehlenhoff <email address hidden>
To: Debian Bug Tracking System <email address hidden>
Subject: libimlib2: BMP remote heap overflow in imlib2

Package: libimlib2
Version: 1.1.0-12.3
Severity: grave
Tags: security
Justification: user security hole

The infamous BMP remote heap overflow, which is already fixed for
imlib+png is also present in imlib2:

The recently released upstream version 1.1.2 fixes the problem:

> Tue Aug 31 11:46:49 JST 2004
> (Raster)
>
> Fixed bmp security issue.
> New IFF ILBM loader
> Up to 1.1.2

Cheers,
        Moritz

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.7
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro

Versions of packages libimlib2 depends on:
ii libc6 2.3.2.ds1-16 GNU C Library: Shared libraries an
ii libfreetype6 2.1.7-2.2 FreeType 2 font engine, shared lib
ii libjpeg62 6b-9 The Independent JPEG Group's JPEG
ii libpng12-0 1.2.5.0-7 PNG library - runtime
ii libtiff4 3.6.1-1.1 Tag Image File Format library
ii libungif4g 4.1.3-1 shared library for GIF images (run
ii libx11-6 4.3.0.dfsg.1-7 X Window System protocol client li
ii libxext6 4.3.0.dfsg.1-7 X Window System miscellaneous exte
ii xlibs 4.3.0.dfsg.1-7 X Window System client libraries m
ii zlib1g 1:1.2.1.1-7 compression library - runtime

-- no debconf information

Revision history for this message
In , Martin Pitt (pitti) wrote : Backported patch

tag 271375 patch
thanks

I backported the patch from upstream's 1.1.2 release, you can get it
from

  http://we.give.back.to.debian.no-name-yet.com/patches/imlib2.271375.diff

Thanks,

Martin

--
Martin Pitt Debian GNU/Linux Developer
<email address hidden> <email address hidden>
http://www.piware.de http://www.debian.org

Revision history for this message
In , Martin Pitt (pitti) wrote : tagging 271375

tags 271375 patch

Revision history for this message
Martin Pitt (pitti) wrote :

fixed in imlib2_1.1.0-12ubuntu2

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-ID: <email address hidden>
Date: Mon, 13 Sep 2004 10:52:28 +0200
From: Martin Pitt <email address hidden>
To: <email address hidden>
Subject: Backported patch

--/04w6evG8XlLl3ft
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

tag 271375 patch
thanks

I backported the patch from upstream's 1.1.2 release, you can get it
=66rom

  http://we.give.back.to.debian.no-name-yet.com/patches/imlib2.271375.diff

Thanks,

Martin

--=20
Martin Pitt Debian GNU/Linux Developer
<email address hidden> <email address hidden>
http://www.piware.de http://www.debian.org

--/04w6evG8XlLl3ft
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBRV/MDecnbV4Fd/IRAuUQAJ9W2lag9TNbR2EAsv+Rjj0rx26XKACgrK4H
wSBAD3r6DOg29XyMASYRtqo=
=FdDr
-----END PGP SIGNATURE-----

--/04w6evG8XlLl3ft--

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Mon, 13 Sep 2004 10:53:11 +0200
From: Martin Pitt <email address hidden>
To: <email address hidden>
Subject: tagging 271375

tags 271375 patch

Revision history for this message
In , Steinar H. Gunderson (sesse) wrote : Fixed in NMU of imlib2 1.1.0-12.4

tag 271375 + fixed

quit

This message was generated automatically in response to a
non-maintainer upload. The .changes file follows.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sun, 19 Sep 2004 00:39:15 +0200
Source: imlib2
Binary: libimlib2 libimlib2-dev
Architecture: source i386
Version: 1.1.0-12.4
Distribution: unstable
Urgency: high
Maintainer: Laurence J. Lane <email address hidden>
Changed-By: Steinar H. Gunderson <email address hidden>
Description:
 libimlib2 - powerful image loading and rendering library
 libimlib2-dev - Imlib2 development files
Closes: 271375
Changes:
 imlib2 (1.1.0-12.4) unstable; urgency=high
 .
   * Non-Maintainer Upload.
   * Fix remote BMP heap overflow, patch from Martin Pitt. (Closes: #271375)
Files:
 b6c9d63ca612646fff143b01e92e9c7b 707 libs optional imlib2_1.1.0-12.4.dsc
 057e2202bd03511980296125c3c5e477 456312 libs optional imlib2_1.1.0-12.4.diff.gz
 0acab7e921eb09500b112d570d9f7ec3 180060 libs optional libimlib2_1.1.0-12.4_i386.deb
 546e9e998a6038bc01a3a9c53a36f02b 578066 libdevel optional libimlib2-dev_1.1.0-12.4_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBTLoIXKRQ3lK3SH4RAivOAKDVT/HLA7T2MXhSAswekE3Hq6IctQCgwJ5T
m4a39FxuyhPoU7ZKPpTijvE=
=sZkc
-----END PGP SIGNATURE-----

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Sat, 18 Sep 2004 19:02:06 -0400
From: <email address hidden> (Steinar H. Gunderson)
To: <email address hidden>
Cc: <email address hidden> (Steinar H. Gunderson), <email address hidden> (Laurence J. Lane)
Subject: Fixed in NMU of imlib2 1.1.0-12.4

tag 271375 + fixed

quit

This message was generated automatically in response to a
non-maintainer upload. The .changes file follows.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sun, 19 Sep 2004 00:39:15 +0200
Source: imlib2
Binary: libimlib2 libimlib2-dev
Architecture: source i386
Version: 1.1.0-12.4
Distribution: unstable
Urgency: high
Maintainer: Laurence J. Lane <email address hidden>
Changed-By: Steinar H. Gunderson <email address hidden>
Description:
 libimlib2 - powerful image loading and rendering library
 libimlib2-dev - Imlib2 development files
Closes: 271375
Changes:
 imlib2 (1.1.0-12.4) unstable; urgency=high
 .
   * Non-Maintainer Upload.
   * Fix remote BMP heap overflow, patch from Martin Pitt. (Closes: #271375)
Files:
 b6c9d63ca612646fff143b01e92e9c7b 707 libs optional imlib2_1.1.0-12.4.dsc
 057e2202bd03511980296125c3c5e477 456312 libs optional imlib2_1.1.0-12.4.diff.gz
 0acab7e921eb09500b112d570d9f7ec3 180060 libs optional libimlib2_1.1.0-12.4_i386.deb
 546e9e998a6038bc01a3a9c53a36f02b 578066 libdevel optional libimlib2-dev_1.1.0-12.4_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBTLoIXKRQ3lK3SH4RAivOAKDVT/HLA7T2MXhSAswekE3Hq6IctQCgwJ5T
m4a39FxuyhPoU7ZKPpTijvE=
=sZkc
-----END PGP SIGNATURE-----

Revision history for this message
In , Laurence J. Lane (ljlane) wrote : closed

closed

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-ID: <email address hidden>
Date: Sun, 28 Nov 2004 13:52:13 -0600
From: "Laurence J. Lane" <email address hidden>
To: <email address hidden>
Subject: closed

closed

Bug Watch Updater (bug-watch-updater)
Changed in imlib2:
status: Unknown → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.