Oval Definition:oval:org.mitre.oval:def:8362
Revision Date:2015-02-23Version:20
Title:DSA-1743 libtk-img -- buffer overflows
Description:Two buffer overflows have been found in the GIF image parsing code of Tk, a cross-platform graphical toolkit, which could lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: It was discovered that libtk-img is prone to a buffer overflow via specially crafted multi-frame interlaced GIF files. It was discovered that libtk-img is prone to a buffer overflow via specially crafted GIF files with certain subimage sizes.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-5137
CVE-2007-5378
DSA-1743
Platform(s):Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s):libtk-img
Definition Synopsis
  • Release section
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND libtk-img-doc is earlier than 1:1.3-release-7+lenny1
  • OR libtk-img is earlier than 1:1.3-release-7+lenny1
  • OR libtk-img-dev is earlier than 1:1.3-release-7+lenny1
  • OR Release section
  • Debian GNU/Linux 4.0 is installed.
  • AND Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is i386
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is mipsel
  • OR Installed architecture is arm
  • AND libtk-img is earlier than 1:1.3-15etch3
    • BACK