A stack-based buffer overflow flaw was found in the way pbm2l2030, a filter to convert raw Portable Bitmap Format (PBM) image data to the printer language of Lexmark 2030 printers, performed reading of PBM stream line data during image printing / conversion. A remote attacker could provide a specially-crafted PBM image file that, when processed by the filter, would lead to pbm2l2030 executable crash or, potentially, arbitrary code execution with the privileges of the user running the pbm2l2030 binary.
This issue was discovered by Murray McAllister of Red Hat Security Response Team.
This issue affects the version of the pbm2l2030 package, as shipped with Red Hat Enterprise Linux 6.
This issue affects the versions of the pbm2l2030 package, as shipped with Fedora release of 16, 17, and 18.