Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-465: imlib


Vulnerability Assessment Details

RHSA-2004-465: imlib

Vulnerability Assessment Summary
Check for the version of the imlib packages

Detailed Explanation for this Vulnerability Assessment


An updated imlib package that fixes several heap overflows is now
available.

Imlib is an image loading and rendering library.

Several heap overflow flaws were found in the imlib BMP image handler. An
attacker could create a carefully crafted BMP file in such a way that it
could cause an application linked with imlib to execute arbitrary code when
the file was opened by a victim. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CVE-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2004-465.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Corsair DOMINATOR 2GB 1x2GB DDR3-1600 CMD12GX3M6A1600C8 VER7.1A DIMM Memory RAM
$6.5
Corsair DOMINATOR 2GB 1x2GB DDR3-1600 CMD12GX3M6A1600C8 VER7.1A DIMM Memory RAM picturePatriot Signature DDR4 8GB 2x4GB 2666MHz PC4-21300 Dual Channel Memory Kit wi...
$42.77
Patriot Signature DDR4 8GB 2x4GB 2666MHz PC4-21300 Dual Channel Memory Kit wi... picture50 Pack 4GB Swivel USB 2.0 Flash Drives Thumb Pen Drive Flash Memory Sticks USA
$99.99
50 Pack 4GB Swivel USB 2.0 Flash Drives Thumb Pen Drive Flash Memory Sticks USA pictureCorsair CMX16GX3M4A1333C9 XMS3 16GB (4x4GB) DDR3 1333MHz C9 Memory Kit 1.5V
$189.89
Corsair CMX16GX3M4A1333C9 XMS3 16GB (4x4GB) DDR3 1333MHz C9 Memory Kit 1.5V picture


Discussions

No Discussions have been posted on this vulnerability.