Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo GLSA 200908-10: Dillo Integer Overflow Threat And Fix Instructions

gentoo
Calendar Grey August 18, 2009
Dist Gentoo Esm H88
The Gentoo Linux Security Advisory GLSA 200908-11 highlights a critical vulnerability in the Pidgin messaging application, possibly enabling remote attackers to execute arbitrary code.
An integer overflow in the PNG handling of Dillo might result in the remote execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200908-10 https://security.gentoo.org/ Severity: Normal Title: Dillo: User-assisted execution of arbitrary code Date: August 18, 2009 Bugs: #276432 ID: 200908-10

Synopsis ======= An integer overflow in the PNG handling of Dillo might result in the remote execution of arbitrary code.
Background ========= Dillo is a graphical web browser known for its speed and small footprint.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/dillo < 2.1.1 >= 2.1.1
========== Tilei Wang reported an integer overflow in the Png_datainfo_callback() function, possibly leading to a heap-based buffer overflow.
Impact ===== A remote ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo code execution remote attack integer overflow dillo png handling

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo code execution remote attack integer overflow dillo png handling

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here