LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

netpbm: buffer overflow

Package(s):netpbm CVE #(s):CVE-2009-4274
Created:February 18, 2010 Updated:April 30, 2010
Description: From the Mandriva alert:

Stack-based buffer overflow in converter/ppm/xpmtoppm.c in netpbm before 10.47.07 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value (CVE-2009-4274).

Alerts:
Oracle ELSA-2011-1811 2011-12-13
Oracle ELSA-2011-1811 2011-12-13
Scientific Linux SL-netp-20111212 2011-12-12
CentOS CESA-2011:1811 2011-12-12
CentOS CESA-2011:1811 2011-12-12
Red Hat RHSA-2011:1811-01 2011-12-12
Ubuntu USN-934-1 2010-04-29
Debian DSA-2026-1 2010-04-02
SuSE SUSE-SR:2010:006 2010-03-15
Mandriva MDVSA-2010:039 2010-02-17
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds