漏洞信息详情
IMLib/IMLib2多个BMP图像编码缓冲区溢出漏洞
- CNNVD编号:CNNVD-200409-037
- 危害等级: 高危
![图片[1]-IMLib/IMLib2多个BMP图像编码缓冲区溢出漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-26/bbdd3e8868c10d22861b2275d65f4500.png)
- CVE编号:
CVE-2004-0827
- 漏洞类型:
缓冲区溢出
- 发布时间:
2004-09-16
- 威胁类型:
远程
- 更新时间:
2010-01-28
- 厂 商:
sun - 漏洞来源:
Discovery of these… -
漏洞简介
ImageMagick graphics库5.4.4前的5.x版本和6.0.6.2前的6.x版本存在漏洞。远程攻击者可以借助畸形(1)AVI,(2)BMP或者(3)DIB文件导致服务拒绝(应用程序崩溃)或可能执行任意代码。
漏洞公告
The vendor has addressed this issue in Imlib2 1.1.2. Reportedly, this fix is available through CVS:
http://cvs.sourceforge.net/viewcvs.py/enlightenment/e17/
Please see the referenced advisories for more information.
Sun Solaris 10
RedHat Fedora Core2
-
Fedora ImageMagick-6.2.0.7-2.fc2.4.legacy.i386.rpmRedHat Fedora Core 2
http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-6.2
.0.7-2.fc2.4.legacy.i386.rpm -
Fedora ImageMagick-c++-6.2.0.7-2.fc2.4.legacy.i386.rpmRedHat Fedora Core 2
http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-c++
-6.2.0.7-2.fc2.4.legacy.i386.rpm -
Fedora ImageMagick-c++-devel-6.2.0.7-2.fc2.4.legacy.i386.rpmRedHat Fedora Core 2
http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-c++
-devel-6.2.0.7-2.fc2.4.legacy.i386.rpm -
Fedora ImageMagick-devel-6.2.0.7-2.fc2.4.legacy.i386.rpmRedHat Fedora Core 2
http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-dev
el-6.2.0.7-2.fc2.4.legacy.i386.rpm -
Fedora ImageMagick-perl-6.2.0.7-2.fc2.4.legacy.i386.rpmRedHat Fedora Core 2
http://download.fedoralegacy.org/fedora/2/updates/i386/ImageMagick-per
l-6.2.0.7-2.fc2.4.legacy.i386.rpm
RedHat Fedora Core1
-
Fedora ImageMagick-5.5.6-13.legacy.i386.rpmRedHat Fedora Core 1
http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-5.5
.6-13.legacy.i386.rpm -
Fedora ImageMagick-c++-5.5.6-13.legacy.i386.rpmRedHat Fedora Core 1
http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-c++
-5.5.6-13.legacy.i386.rpm -
Fedora ImageMagick-c++-devel-5.5.6-13.legacy.i386.rpmRedHat Fedora Core 1
http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-c++
-devel-5.5.6-13.legacy.i386.rpm -
Fedora ImageMagick-devel-5.5.6-13.legacy.i386.rpmRedHat Fedora Core 1
http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-dev
el-5.5.6-13.legacy.i386.rpm -
Fedora ImageMagick-perl-5.5.6-13.legacy.i386.rpmRedHat Fedora Core 1
http://download.fedoralegacy.org/fedora/1/updates/i386/ImageMagick-per
l-5.5.6-13.legacy.i386.rpm
Sun Solaris 10_x86
Sun Solaris 9
-
Sun 114636-04 (sun)
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21
-114636-04-1 -
Sun 137038-01
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21
-137038-01-1
Sun Solaris 9_x86
-
Sun 114637-04 (sun)
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21
-114637-04-1 -
Sun 137039-01
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21
-137039-01-1
Enlightenment Imlib2 1.0.5
-
Conectiva imlib2-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-1.0.6-26409U90_1cl.i
386.rpm -
Conectiva imlib2-1.0.6-58651U10_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/10/RPMS/imlib2-1.0.6-58651U10_1cl.
i386.rpm -
Conectiva imlib2-devel-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-devel-1.0.6-26409U90
_1cl.i386.rpm -
Conectiva imlib2-devel-1.0.6-58651U10_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/10/RPMS/imlib2-devel-1.0.6-58651U1
0_1cl.i386.rpm -
Conectiva imlib2-devel-static-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-devel-static-1.0.6-2
6409U90_1cl.i386.rpm -
Conectiva imlib2-devel-static-1.0.6-58651U10_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/10/RPMS/imlib2-devel-static-1.0.6-
58651U10_1cl.i386.rpm -
Conectiva imlib2-filters-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-filters-1.0.6-26409U
90_1cl.i386.rpm -
Conectiva imlib2-filters-1.0.6-58651U10_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/10/RPMS/imlib2-filters-1.0.6-58651
U10_1cl.i386.rpm -
Conectiva imlib2-loader_argb-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-loader_argb-1.0.6-26
409U90_1cl.i386.rpm -
Conectiva imlib2-loader_argb-1.0.6-58651U10_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/10/RPMS/imlib2-loader_argb-1.0.6-5
8651U10_1cl.i386.rpm -
Conectiva imlib2-loader_bmp-1.0.6-26409U90_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/9/RPMS/imlib2-loader_bmp-1.0.6-264
09U90_1cl.i386.rpm
参考网址
来源: REDHAT
名称: RHSA-2004:494
链接:http://www.redhat.com/support/errata/RHSA-2004-494.html
来源: REDHAT
名称: RHSA-2004:480
链接:http://www.redhat.com/support/errata/RHSA-2004-480.html
来源: DEBIAN
名称: DSA-547
链接:http://www.debian.org/security/2004/dsa-547
来源: XF
名称: imagemagick-bmp-Bo(17173)
链接:http://xforce.iss.net/xforce/xfdb/17173
来源: SUNALERT
名称: 201006
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-66-201006-1
来源: OVAL
名称: oval:org.mitre.oval:def:11123
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11123
来源: VUPEN
名称: ADV-2008-0412
链接:http://www.frsirt.com/english/advisories/2008/0412
来源: SUNALERT
名称: 231321
链接:http://sunsolve.sun.com/search/document.do?assetkey=1-26-231321-1
来源: SECUNIA
名称: 28800
链接:http://secunia.com/advisories/28800
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
