Family: Red Hat Local Security Checks --> Category: infos
RHSA-2004-465: imlib Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the imlib packages
Detailed Explanation for this Vulnerability Test
An updated imlib package that fixes several heap overflows is now
Imlib is an image loading and rendering library.
Several heap overflow flaws were found in the imlib BMP image handler. An
attacker could create a carefully crafted BMP file in such a way that it
could cause an application linked with imlib to execute arbitrary code when
the file was opened by a victim. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CVE-2004-0817 to this issue.
Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2004-465.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.