Red Hat Bugzilla – Bug 150700
CAN-2005-0638 xloadimage multiple issues.
Last modified: 2007-11-30 17:07:16 EST
xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute
arbitrary commands via shell metacharacters in filenames for compressed images,
which are not properly quoted when calling the gunzip command. (CAN-2005-0638)
Additionally, the gentoo bug covers a few other issues.
This issue should affect RHEL3 and RHEL2.1 as well.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.