tk8.3 buffer overrun
Bug #151007 reported by
Jamie Strandboge
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tk8.3 (Ubuntu) |
Fix Released
|
Undecided
|
Jamie Strandboge |
Bug Description
Binary package hint: tk8.3
tk8.3 is vulnerable to a buffer overrun. This is upstream Tk bug 1458234
CVE References
Changed in tk8.3: | |
assignee: | nobody → jamie-strandboge |
status: | New → In Progress |
To post a comment you must log in.
tk8.3 (8.3.5-6ubuntu2.1) feisty-security; urgency=low
* SECURITY UPDATE: buffer overflow and potential arbitrary code execution
via crafted GIF image
* fix for generic/tkImgGIF.c to properly allocate memory for files with
different sized frames
* References
LP: #151007
-- Jamie Strandboge <email address hidden> Tue, 9 Oct 2007 13:43:30 -0400