| Revision Date: | 2013-04-29 | Version: | 11 | | Title: | Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137. | | Description: | Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137. | | Family: | unix | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2007-5378
| | Platform(s): | CentOS Linux 3
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
| Product(s): | | | Definition Synopsis | | OS Section: RHEL3, CentOS3 RHEL3 or CentOS3
The operating system installed on the system is Red Hat Enterprise Linux 3
OR CentOS Linux 3.x
AND Configuration section
tix is earlier than 0:8.1.4-92.8
OR tclx is earlier than 0:8.3-92.8
OR tcl-devel is earlier than 0:8.3.5-92.8
OR expect-devel is earlier than 0:5.38.0-92.8
OR tcltk is earlier than 0:8.3.5-92.8
OR itcl is earlier than 0:3.2-92.8
OR tcl is earlier than 0:8.3.5-92.8
OR expect is earlier than 0:5.38.0-92.8
OR tk-devel is earlier than 0:8.3.5-92.8
OR tk is earlier than 0:8.3.5-92.8
OR OS Section: RHEL4, CentOS4, Oracle Linux 4
RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND Configuration section
tk-devel is earlier than 0:8.4.7-3.el4_6.1
OR tk is earlier than 0:8.4.7-3.el4_6.1
|
|