130908 – CAN-2004-0817 heap overflow in BMP decoder

Bug 130908 - CAN-2004-0817 heap overflow in BMP decoder

Summary: CAN-2004-0817 heap overflow in BMP decoder

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	imlib
Sub Component:
Version:	2
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Jonathan Blandford
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2004-08-25 18:32 UTC by Josh Bressers
Modified:	2013-04-02 04:19 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2004-09-09 20:40:04 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Josh Bressers 2004-08-25 18:32:30 UTC

A heap overflow issue has been discovered in the imlib BMP decoder. 
This issue deals with overflowing the color palette.

It may be possible for this overflow to allow an attacker to execute
malicious code.

The demo image is attachment 102533 [details].

This issue is also documented in the gnome BTS
http://bugzilla.gnome.org/show_bug.cgi?id=151034

This issue also affects FC1

Comment 1 Josh Bressers 2004-09-09 20:40:04 UTC

This has been pushed.

Note You need to log in before you can comment on or make changes to this bug.