Fedora 26: icoutils Moderate Security Advisory for Buffer Overflows
fedora
April 1, 2017
Security fix for CVE-2017-6009, CVE-2017-6010, CVE-2017-6011.
Summary
The icoutils are a set of programs for extracting and converting images in
Microsoft Windows icon and cursor files. These files usually have the
extension .ico or .cur, but they can also be embedded in executables or
libraries.
Update Information:
Security fix for CVE-2017-6009, CVE-2017-6010, CVE-2017-6011.
Topics Covered
Change Log
References
[ 1 ] Bug #1422908 - CVE-2017-6011 icoutils: Buffer overflow in the simple_vec function
https://bugzilla.redhat.com/show_bug.cgi?id=1422908
[ 2 ] Bug #1422907 - CVE-2017-6010 icoutils: Buffer overflow in the extract_icons function
https://bugzilla.redhat.com/show_bug.cgi?id=1422907
[ 3 ] Bug #1422906 - CVE-2017-6009 icoutils: Buffer overflow in the decode_ne_resource_id function
https://bugzilla.redhat.com/show_bug.cgi?id=1422906
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade icoutils' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: icoutils
Product: Fedora 26
Version: 0.31.2
Release: 1.fc26
Summary: Utility for extracting and converting Microsoft icon and cursor files
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!