Oval Definition:oval:com.redhat.rhsa:def:20050828
Revision Date:2005-11-03Version:502
Title:RHSA-2005:828: libungif security update (Important)
Description:The libungif package contains a shared library of functions for loading and saving GIF format image files.

Several bugs in the way libungif decodes GIF images were discovered. An attacker could create a carefully crafted GIF image file in such a way that it could cause an application linked with libungif to crash or execute arbitrary code when the file is opened by a victim. The Common Vulnerabilities and Exposures project has assigned the names CVE-2005-2974 and CVE-2005-3350 to these issues.

All users of libungif are advised to upgrade to these updated packages, which contain backported patches that resolve these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-2974
CVE-2005-3350
RHSA-2005:828-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • libungif is earlier than 0:4.1.0-15.el3.3
  • AND libungif is signed with Red Hat master key
  • libungif-progs is earlier than 0:4.1.0-15.el3.3
  • AND libungif-progs is signed with Red Hat master key
  • libungif-devel is earlier than 0:4.1.0-15.el3.3
  • AND libungif-devel is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • libungif is earlier than 0:4.1.3-1.el4.2
  • AND libungif is signed with Red Hat master key
  • libungif-progs is earlier than 0:4.1.3-1.el4.2
  • AND libungif-progs is signed with Red Hat master key
  • libungif-devel is earlier than 0:4.1.3-1.el4.2
  • AND libungif-devel is signed with Red Hat master key
    • BACK