GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Fri Apr 21, 2006 6:26 am Post subject: [ GLSA 200604-10 ] zgv, xzgv: Heap overflow |
 |
|
Gentoo Linux Security Advisory
Title: zgv, xzgv: Heap overflow (GLSA 200604-10)
Severity: normal
Exploitable: remote
Date: April 21, 2006
Updated: June 10, 2006
Bug(s): #127008
ID: 200604-10
Synopsis
xzgv and zgv attempt to decode JPEG images within the CMYK/YCCK colour space incorrectly, potentially resulting in the execution of arbitrary code.
Background
xzgv and zgv are picture viewing utilities with a thumbnail based file selector.
Affected Packages
Package: media-gfx/xzgv
Vulnerable: < 0.8-r2
Unaffected: >= 0.8-r2
Architectures: All supported architectures
Package: media-gfx/zgv
Vulnerable: < 5.9
Unaffected: >= 5.9
Architectures: All supported architectures
Description
Andrea Barisani of Gentoo Linux discovered xzgv and zgv allocate insufficient memory when rendering images with more than 3 output components, such as images using the YCCK or CMYK colour space. When xzgv or zgv attempt to render the image, data from the image overruns a heap allocated buffer.
Impact
An attacker may be able to construct a malicious image that executes arbitrary code with the permissions of the xzgv or zgv user when attempting to render the image.
Workaround
There is no known workaround at this time.
Resolution
All xzgv users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=media-gfx/xzgv-0.8-r2" |
All zgv users should also upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=media-gfx/zgv-5.9" |
References
CVE-2006-1060
homepage plus Changelog
Last edited by GLSA on Sun Jun 11, 2006 4:20 am; edited 2 times in total |
|
News & Announcements
