Mandriva Linux Security Advisory 2009:317: netpbm
-
- 37
Article Source Mandriva Linux Security Advisories
Multiple security vulnerabilities has been identified and fixed
in netpbm:
Multiple integer overflows in JasPer 1.900.1 might allow
context-dependent attackers to have an unknown impact via a crafted
image file, related to integer multiplication for memory allocation
(CVE-2008-3520).
Buffer overflow in the jas_stream_printf function in
libjasper/base/jas_stream.c in JasPer 1.900.1 might allow
context-dependent attackers to have an unknown impact via
vectors related to the mif_hdr_put function and use of vsprintf
(CVE-2008-3522).
pamperspective in Netpbm before 10.35.48 does not properly calculate
a window height, which allows context-dependent attackers to cause a
denial of service (crash) via a crafted image file that triggers an
out-of-bounds read (CVE-2008-4799).
Packages for 2008.0 are being provided due to extended support for
Corporate products.
This update fixes this vulnerability.
Article Source Mandriva Linux Security Advisories Multiple security vulnerabilities has been identified and fixedin netpbm: Multiple integer overflows in JasPer 1.900.1 might allowcontext-dependent attackers to have an unknown impact via a craftedimage file, related to integer multiplication for memory allocation(CVE-2008-3520). Buffer overflow in the jas_stream_printf function inlibjasper/base/jas_stream.c in JasPer 1.900.1 might…
Article Source Mandriva Linux Security Advisories Multiple security vulnerabilities has been identified and fixedin netpbm: Multiple integer overflows in JasPer 1.900.1 might allowcontext-dependent attackers to have an unknown impact via a craftedimage file, related to integer multiplication for memory allocation(CVE-2008-3520). Buffer overflow in the jas_stream_printf function inlibjasper/base/jas_stream.c in JasPer 1.900.1 might…