Oval Definition:oval:org.opensuse.security:def:20082426
Revision Date:2022-06-30Version:1
Title:CVE-2008-2426
Description:

Multiple stack-based buffer overflows in Imlib 2 (aka imlib2) 1.4.0 allow user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via (1) a PNM image with a crafted header, related to the load function in src/modules/loaders/loader_pnm.c; or (2) a crafted XPM image, related to the load function in src/modules/loader_xpm.c.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-2426
Mitre CVE-2008-2426
SUSE CVE-2008-2426
SUSE-SR:2008:018
SUSE-SR:2008:018
Platform(s):openSUSE 10.2
openSUSE 10.3
openSUSE 11.0
openSUSE Tumbleweed
SUSE Linux Enterprise SDK 10 SP2
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • sles10-sp2-sdk is installed
  • AND Package Information
  • imlib2-devel less than 1.2.1-17.14
  • OR imlib2-loaders less than 1.2.1-17.14
  • OR imlib2 less than 1.2.1-17.14
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • imlib2-1.4.2-2.18 is installed
  • OR imlib2-devel-1.4.2-2.18 is installed
  • OR imlib2-filters-1.4.2-2.18 is installed
  • OR imlib2-loaders-1.4.2-2.18 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • imlib2-1.7.1-1.6 is installed
  • OR imlib2-devel-1.7.1-1.6 is installed
  • OR imlib2-filters-1.7.1-1.6 is installed
  • OR imlib2-loaders-1.7.1-1.6 is installed
  • OR libImlib2-1-1.7.1-1.6 is installed
    • BACK