---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-301
2004-09-09
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : imlib
Version     : 1.9.13                      
Release     : 19                  
Summary     : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.

Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.

---------------------------------------------------------------------
Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues. 
---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- security fixes


---------------------------------------------------------------------
This update can be downloaded from:
    

c6ed83101974d8283a4013a80e356c08  SRPMS/imlib-1.9.13-19.src.rpm
9f6952bd21d1157b4c10dde7f87b8a3d  x86_64/imlib-1.9.13-19.x86_64.rpm
e70a8c0dec245aea672da1f1608e1e33 
x86_64/imlib-devel-1.9.13-19.x86_64.rpm
64aa17fe9a0ea4efa9d48020212274c9 
x86_64/imlib-cfgeditor-1.9.13-19.x86_64.rpm
48ef8b28ae79d1c7c82974e7f6b77e86 
x86_64/debug/imlib-debuginfo-1.9.13-19.x86_64.rpm
d9d04d9df1981e22e45853789a99db19  i386/imlib-1.9.13-19.i386.rpm
9589803f0299131a91bf78ea62cf68c3  i386/imlib-devel-1.9.13-19.i386.rpm
b602fcb2d9d57b87abd57792b17c84c1 
i386/imlib-cfgeditor-1.9.13-19.i386.rpm
fe0ab8902a4f20532cea1f1d988add08 
i386/debug/imlib-debuginfo-1.9.13-19.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
---------------------------------------------------------------------

Fedora: imlib several vulnerabilities (Core 2)

September 9, 2004
Several heap overflow vulnerabilities have been found in the imlib BMPimage handler.

Summary

Imlib is a display depth independent image loading and rendering

library. Imlib is designed to simplify and speed up the process of

loading images and obtaining X Window System drawables. Imlib

provides many simple manipulation routines which can be used for

common operations.

Install imlib if you need an image loading and rendering library for

X11R6, or if you are installing GNOME. You may also want to install

the imlib-cfgeditor package, which will help you configure Imlib.

Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP image handler. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with imlib to execute arbitrary code when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains backported patches and is not vulnerable to these issues. * Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- security fixes


This update can be downloaded from:


c6ed83101974d8283a4013a80e356c08 SRPMS/imlib-1.9.13-19.src.rpm 9f6952bd21d1157b4c10dde7f87b8a3d x86_64/imlib-1.9.13-19.x86_64.rpm e70a8c0dec245aea672da1f1608e1e33 x86_64/imlib-devel-1.9.13-19.x86_64.rpm 64aa17fe9a0ea4efa9d48020212274c9 x86_64/imlib-cfgeditor-1.9.13-19.x86_64.rpm 48ef8b28ae79d1c7c82974e7f6b77e86 x86_64/debug/imlib-debuginfo-1.9.13-19.x86_64.rpm d9d04d9df1981e22e45853789a99db19 i386/imlib-1.9.13-19.i386.rpm 9589803f0299131a91bf78ea62cf68c3 i386/imlib-devel-1.9.13-19.i386.rpm b602fcb2d9d57b87abd57792b17c84c1 i386/imlib-cfgeditor-1.9.13-19.i386.rpm fe0ab8902a4f20532cea1f1d988add08 i386/debug/imlib-debuginfo-1.9.13-19.i386.rpm

This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command.

Change Log

References

Fedora Update Notification FEDORA-2004-301 2004-09-09 Product : Fedora Core 2 Name : imlib Version : 1.9.13 Release : 19 Summary : An image loading and rendering library for X11R6. Description : Imlib is a display depth independent image loading and rendering library. Imlib is designed to simplify and speed up the process of loading images and obtaining X Window System drawables. Imlib provides many simple manipulation routines which can be used for common operations. Install imlib if you need an image loading and rendering library for X11R6, or if you are installing GNOME. You may also want to install the imlib-cfgeditor package, which will help you configure Imlib.

Update Instructions

Severity
Product : Fedora Core 2
Name : imlib
Version : 1.9.13
Release : 19
Summary : An image loading and rendering library for X11R6.

Related News

Fighting Back Against Hadooken Malware by Strengthening WebLogic Security
2 - 4 min read
Cybercriminals have been relentlessly attacking the digital landscape, aiming to exploit vulnerabilities in well-known systems. One such exploit is
CISA Sounds Alarm on Newly Exploited Vulnerabilities: Is Your System at Risk?
3 - 5 min read
CISA regularly publishes updates regarding vulnerabilities that present severe threats to global cybersecurity. Recently, CISA added three
Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved