Buffer overflow in GIF and IFF ILBM handling
Bug #185782 reported by
Mark Taylor
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sdl-image1.2 (Ubuntu) |
Fix Released
|
Medium
|
StefanPotyra | ||
Dapper |
Fix Released
|
Medium
|
Kees Cook | ||
Edgy |
Fix Released
|
Medium
|
Kees Cook | ||
Feisty |
Fix Released
|
Medium
|
Kees Cook | ||
Gutsy |
Fix Released
|
Medium
|
Kees Cook | ||
Hardy |
Fix Released
|
Medium
|
StefanPotyra |
Bug Description
There's a buffer overflow in IMG_gif.c in SDL_Image 1.2.6 and earlier, as described in this Bugtraq posting: <http://
The flaw could possibly cause remote execution of arbitrary code and was solved in upstream version 1.2.7.
Changed in sdl-image1.2: | |
assignee: | nobody → andreas-wenning |
status: | Confirmed → In Progress |
Changed in sdl-image1.2: | |
assignee: | andreas-wenning → nobody |
status: | In Progress → Confirmed |
Changed in sdl-image1.2: | |
assignee: | nobody → keescook |
status: | Confirmed → In Progress |
To post a comment you must log in.
I backported the fix to the current Gutsy version of sdl-image. A (tiny) patch is attached.