---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-300
2004-09-09
---------------------------------------------------------------------

Product     : Fedora Core 1
Name        : imlib
Version     : 1.9.13                      
Release     : 15.fc1                  
Summary     : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.

Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.

---------------------------------------------------------------------
Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues. 

---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- Security fixes


---------------------------------------------------------------------
This update can be downloaded from:
    ...

03a77921e2efd86e0703d66de59cad1c  SRPMS/imlib-1.9.13-15.fc1.src.rpm
7c819092b3f54e6fba51460f10d4d2db  x86_64/imlib-1.9.13-15.fc1.x86_64.rpm
296479ab2f3ebfdb1b43c4454d881009 
x86_64/imlib-devel-1.9.13-15.fc1.x86_64.rpm
5b66680b22684df822ef4f38d6e87a35 
x86_64/imlib-cfgeditor-1.9.13-15.fc1.x86_64.rpm
f211ba31e2b13a872d0c318b4892c624 
x86_64/debug/imlib-debuginfo-1.9.13-15.fc1.x86_64.rpm
8bd4bb9bbcad02a8442edd5bd6afd8f2  i386/imlib-1.9.13-15.fc1.i386.rpm
469d4ed01e2ba0b49fdcd0fa01323052 
i386/imlib-devel-1.9.13-15.fc1.i386.rpm
fa26f3f2c7a877c806b675fc8de68203 
i386/imlib-cfgeditor-1.9.13-15.fc1.i386.rpm
7d0d786eb8e5ea9793c2505267a2f650 
i386/debug/imlib-debuginfo-1.9.13-15.fc1.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
---------------------------------------------------------------------

Fedora: imlib-1.9.13-15.fc Security update (core1)

September 10, 2004
Several heap overflow vulnerabilities have been found in the imlib BMPimage handler

Summary

Imlib is a display depth independent image loading and rendering

library. Imlib is designed to simplify and speed up the process of

loading images and obtaining X Window System drawables. Imlib

provides many simple manipulation routines which can be used for

common operations.

Install imlib if you need an image loading and rendering library for

X11R6, or if you are installing GNOME. You may also want to install

the imlib-cfgeditor package, which will help you configure Imlib.

Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP image handler. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with imlib to execute arbitrary code when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains backported patches and is not vulnerable to these issues.

* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- Security fixes


This update can be downloaded from: ...

03a77921e2efd86e0703d66de59cad1c SRPMS/imlib-1.9.13-15.fc1.src.rpm 7c819092b3f54e6fba51460f10d4d2db x86_64/imlib-1.9.13-15.fc1.x86_64.rpm 296479ab2f3ebfdb1b43c4454d881009 x86_64/imlib-devel-1.9.13-15.fc1.x86_64.rpm 5b66680b22684df822ef4f38d6e87a35 x86_64/imlib-cfgeditor-1.9.13-15.fc1.x86_64.rpm f211ba31e2b13a872d0c318b4892c624 x86_64/debug/imlib-debuginfo-1.9.13-15.fc1.x86_64.rpm 8bd4bb9bbcad02a8442edd5bd6afd8f2 i386/imlib-1.9.13-15.fc1.i386.rpm 469d4ed01e2ba0b49fdcd0fa01323052 i386/imlib-devel-1.9.13-15.fc1.i386.rpm fa26f3f2c7a877c806b675fc8de68203 i386/imlib-cfgeditor-1.9.13-15.fc1.i386.rpm 7d0d786eb8e5ea9793c2505267a2f650 i386/debug/imlib-debuginfo-1.9.13-15.fc1.i386.rpm

This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command.

Change Log

References

Fedora Update Notification FEDORA-2004-300 2004-09-09 Product : Fedora Core 1 Name : imlib Version : 1.9.13 Release : 15.fc1 Summary : An image loading and rendering library for X11R6. Description : Imlib is a display depth independent image loading and rendering library. Imlib is designed to simplify and speed up the process of loading images and obtaining X Window System drawables. Imlib provides many simple manipulation routines which can be used for common operations. Install imlib if you need an image loading and rendering library for X11R6, or if you are installing GNOME. You may also want to install the imlib-cfgeditor package, which will help you configure Imlib.

Update Instructions

Severity
Product : Fedora Core 1
Name : imlib
Version : 1.9.13
Release : 15.fc1
Summary : An image loading and rendering library for X11R6.

Related News

Fighting Back Against Hadooken Malware by Strengthening WebLogic Security
2 - 4 min read
Cybercriminals have been relentlessly attacking the digital landscape, aiming to exploit vulnerabilities in well-known systems. One such exploit is
CISA Sounds Alarm on Newly Exploited Vulnerabilities: Is Your System at Risk?
3 - 5 min read
CISA regularly publishes updates regarding vulnerabilities that present severe threats to global cybersecurity. Recently, CISA added three
Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved