Red Hat Bugzilla – Bug 187402
CVE-2006-1550 Dia multiple buffer overflows
Last modified: 2007-11-30 17:11:29 EST
Dia multiple buffer overflows
infamous41md discovered three buffer overflows in Dia's xfig importer.
The issues are caused by unchecked input from the xfig file.
The patch can be found here:
Attachment 127062 [details] is Demo Exploit #1
Attachment 127063 [details] is Demo Exploit #2
Attachment 127064 [details] is Demo Exploit #3
Aan erratum was issued today for this issue by Caolan McNamara titled
Closing this bug-ticket.