Bug 152093

Summary: CAN-2005-1046 PCX file integer overflow
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: kdelibsAssignee: Than Ngo <than>
Status: CLOSED CURRENTRELEASE QA Contact:
Severity: high Docs Contact:
Priority: medium    
Version: 3CC: walt
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=important,public=20050324,source=vendorsec,reported=20050324
Fixed In Version: 3.3.1-2.10 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-08-19 11:04:31 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Josh Bressers 2005-03-24 19:44:24 UTC
+++ This bug was initially created as a clone of Bug #152092 +++

Some corrupt PCX files crash gwenview badly and it could maybe be exploitable. 

More information is available in the KDE bugzilla:
http://bugs.kde.org/show_bug.cgi?id=102328

Comment 1 Josh Bressers 2005-03-24 19:45:01 UTC
This issue should also affect FC2.

Comment 2 Than Ngo 2005-04-18 15:08:00 UTC
it's fixed 3.3.1-2.10.FC3. fc2 is not supported anymore.

Comment 3 Walter Justen 2005-08-19 11:04:31 UTC
Thanks for the bug report. This particular bug was fixed and a update package
was published for download. Please feel free to report any further bugs you find.