Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD2001103A-6BBD-11D9-851D-000A95BC6FAE
HistoryDec 06, 2004 - 12:00 a.m.

imlib -- xpm heap buffer overflows and integer overflows

2004-12-0600:00:00
vuxml.freebsd.org
24

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.305 Low

EPSS

Percentile

97.0%

JSON

Pavel Kankovsky reports:

Imlib affected by a variant of CAN-2004-0782 too.
I’ve discovered more vulnerabilities in Imlib
(1.9.13). In particular, it appears to be affected by a
variant of Chris Evans’ libXpm flaw #1 (CAN-2004-0782, see
http://scary.beasts.org/security/CESA-2004-003.txt). Look
at the attached image, it kills ee on my 7.3.

The flaws also affect imlib2.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchimlib< 1.9.15_2UNKNOWN
FreeBSDanynoarchimlib2< 1.1.2_1UNKNOWN

Related

nessus 23
openvas 24
debian 8
osv 4
ubuntu 2
redhat 3
nvd 3
gentoo 3
debiancve 2
cvelist 3
cve 3
ubuntucve 3
securityvulns 3
freebsd 1
cert 2
suse 2
nessus
nessus
FreeBSD : imlib -- xpm heap buffer overflows and integer overflows (2001103a-6bbd-11d9-851d-000a95bc6fae)
2005-07-13 00:00:00
RHEL 2.1 / 3 : imlib (RHSA-2004:651)
2004-12-13 00:00:00
Ubuntu 4.10 : imlib2 vulnerabilities (USN-55-1)
2006-01-15 00:00:00
openvas
openvas
FreeBSD Ports: imlib
2008-09-04 00:00:00
Debian: Security Advisory (DSA-618-1)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-628-1)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution
2005-01-06 16:53:22
[SECURITY] [DSA 618-1] New imlib packages fix arbitrary code execution
2004-12-24 16:40:42
[SECURITY] [DSA 618-1] New imlib packages fix arbitrary code execution
2004-12-24 16:40:42
osv
osv
imlib - buffer overflows, integer overflows
2004-12-24 00:00:00
imlib2 - integer overflows
2005-01-06 00:00:00
gdk-pixbuf - several vulnerabilities
2004-09-16 00:00:00
ubuntu
ubuntu
imlib vulnerabilities
2004-12-29 00:00:00
imlib2 vulnerabilities
2005-01-07 00:00:00
redhat
redhat
(RHSA-2004:651) imlib security update
2004-12-23 00:00:00
(RHSA-2004:466) gtk2 security update
2004-09-15 00:00:00
(RHSA-2004:447) gdk-pixbuf security update
2004-09-15 00:00:00
nvd
nvd
CVE-2004-1026
2005-01-10 05:00:00
CVE-2004-1025
2005-01-10 05:00:00
CVE-2004-0782
2004-10-20 04:00:00
gentoo
gentoo
imlib: Buffer overflows in image decoding
2004-12-06 00:00:00
imlib2: Buffer overflows in image decoding
2005-01-11 00:00:00
GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities
2004-09-21 00:00:00
debiancve
debiancve
CVE-2004-1026
2005-01-10 05:00:00
CVE-2004-0782
2004-10-20 04:00:00
cvelist
cvelist
CVE-2004-1026
2004-12-10 05:00:00
CVE-2004-1025
2004-12-15 05:00:00
CVE-2004-0782
2004-09-17 04:00:00
cve
cve
CVE-2004-1025
2005-01-10 05:00:00
CVE-2004-1026
2005-01-10 05:00:00
CVE-2004-0782
2004-10-20 04:00:00
ubuntucve
ubuntucve
CVE-2004-1026
2005-01-10 00:00:00
CVE-2004-1025
2005-01-10 00:00:00
CVE-2004-0782
2004-10-20 00:00:00
securityvulns
securityvulns
[Full-Disclosure] [ GLSA 200412-03 ] imlib: Buffer overflows in image decoding
2004-12-07 00:00:00
CESA-2004-004: libXpm
2004-09-16 00:00:00
CESA-2004-005: gtk+ XPM decoder
2004-09-16 00:00:00
freebsd
freebsd
gdk-pixbuf -- image decoding vulnerabilities
2004-09-15 00:00:00
cert
cert
GdkPixbuf BMP parser may enter an infinite loop
2004-10-01 00:00:00
GdkPixbuf XPM parser contains a heap overflow vulnerability
2004-10-01 00:00:00
suse
suse
remote code execution in gtk2, gdk-pixbuf
2004-09-17 10:02:50
remote denial-of-service in apache2
2004-09-15 15:46:39

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.305 Low

EPSS

Percentile

97.0%

JSON
Related for 2001103A-6BBD-11D9-851D-000A95BC6FAE
nessus23openvas24debian8osv4ubuntu2redhat3nvd3gentoo3debiancve2cvelist3cve3ubuntucve3securityvulns3freebsd1cert2suse2