‘imlib2 IMAGE_DIMENSIONS_OK Logic Error Vulnerability’

Published on June 21st, 2010
Summary

A vulnerability was discovered in imlib2, which can be exploited by malicious people to compromise an application using the library.’

Credit:

‘The information has been provided by Stefan Cornelius.
The original article can be found at: http://secunia.com/secunia_research/2010-54/


Details

Vulnerable Systems:
 * imlib2 version 1.4.3

Immune Systems:
 * HP-UX B.11.11 (B.11.11.02.008)
 * HP-UX B.11.23 (B.11.23.1.007)
 * HP-UX B.11.31 (C.8.13.3.5)

The vulnerability is caused by a logic error within the ‘IMAGE_DIMENSIONS_OK()’ macro in src/lib/image.h. This can be exploited to cause heap-based buffer overflows via e.g. specially crafted ARGB, XPM, and BMP image files.

Patch Availability:
Fixed in the SVN repository.

CVE Information:
CVE-2010-0991

Disclosure Timeline:
07/04/2010 – Vendor notified.
08/04/2010 – Vendor response.
21/04/2010 – Public disclosure.’

Categories: UNIX
Tags:

Related Posts

UNIX

‘ProFTPD Response Pool Use-After-Free Code Execution Vulnerability’

'This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the ProFTPd server.'

UNIX

‘Insight Control for Linux Multiple Vulnerabilities’

'Remote unauthorized elevation of privilege, execution of arbitrary code, encryption downgrade, information disclosure and Denial of Service (DoS) vulnerabilities were identified in Insight Control for Linux.'

UNIX

‘HP-UX Running NFS/ONCplus Denial of Service Vulnerability’

'A potential security vulnerability has been identified with NFS/ONCplus running on HP-UX.'