214676 – CVE-2006-480[6-9] imlib2 multiple vulnerabilities

Bug 214676 - CVE-2006-480[6-9] imlib2 multiple vulnerabilities

Summary: CVE-2006-480[6-9] imlib2 multiple vulnerabilities

Keywords:
Status:	CLOSED NEXTRELEASE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	imlib2
Sub Component:
Version:	6
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Hans de Goede
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-11-08 20:39 UTC by Ville Skyttä
Modified:	2007-11-30 22:11 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2006-11-09 10:33:32 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Ville Skyttä 2006-11-08 20:39:06 UTC

Multiple vulnerabilities in imlib2:

http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4806
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4807
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4808
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4809

Some of the reports mention "before 1.2.1", but at least some of the issues seem
to be present in 1.2.2 and 1.3.0 too.

FreeBSD's patches (apparently originally from Ubuntu) for these issues are
available at http://www.freebsd.org/cgi/cvsweb.cgi/ports/graphics/imlib2/files/

Comment 1 Hans de Goede 2006-11-09 10:33:32 UTC

Thanks for reporting this. I've pushed imlib2 updates for FC-3 - FC-6 and devel
and I'll start writing an advisory right away.

Note You need to log in before you can comment on or make changes to this bug.