Secunia in their advisory SA28640 points out possible heap buffer overflow in IMG_LoadLBM_RW - IFF ILBM image handling code - which was fixed in SDL_image SVN: http://secunia.com/advisories/28640/ Relevant commit: http://www.libsdl.org/cgi/viewvc.cgi/trunk/SDL_image/IMG_lbm.c?r1=3341&r2=3521 First part of the advisory covers GIF image handling overflow already tracked via bug #430100.
SDL_image-1.2.6-5.fc8 has been submitted as an update for Fedora 8
SDL_image-1.2.5-7.fc7 has been submitted as an update for Fedora 7
SDL_image-1.2.6-5.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
SDL_image-1.2.5-7.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-1231 https://admin.fedoraproject.org/updates/F8/FEDORA-2008-1208