Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 580
Alerts This Week
Warning Icon 1 580

Fedora 23 Security Advisory: 2016-f8eee2e628 Critical Imlib2 Out Of Bounds

fedora
Calendar Grey April 13, 2016
Dist Fedora Esm H88
Critical patch release for imlib2 on Fedora 23 addressing urgent vulnerabilities linked to buffer overflow issues.
Rebase to the new upstream bugfix-only version

Summary

Imlib 2 is a library that does image file loading and saving as well

as rendering, manipulation, arbitrary polygon support, etc. It does

ALL of these operations FAST. Imlib2 also tries to be highly

intelligent about doing them, so writing naive programs can be done

easily, without sacrificing speed. This is a complete rewrite over

the Imlib 1.x series. The architecture is more modular, simple, and

flexible.

Update Information:

Rebase to the new upstream bugfix-only version. Add security fixes for the referenced bugs.

Change Log

References


[ 1 ] Bug #1323060 - CVE-2016-3994 imlib2: out of bound read in GIF loader https://bugzilla.redhat.com/show_bug.cgi?id=1323060 [ 2 ] Bug #1323080 - CVE-2011-5326 imlib2: divide by zero on 2x1 ellipse https://bugzilla.redhat.com/show_bug.cgi?id=1323080

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update imlib2' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: imlib2
Product: Fedora 23
Version: 1.4.8
Release: 1.fc23
URL:
Summary: Image loading, saving, rendering, and manipulation library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.