[Full-disclosure] [ GLSA 200504-17 ] XV: Multiple vulnerabilities

From: Sune Kloppenborg Jeppesen (jaervosz_at_gentoo.org)
Date: 04/19/05

  • Next message: Sune Kloppenborg Jeppesen: "[Full-disclosure] [gentoo-announce] [ GLSA 200504-17 ] XV: Multiple vulnerabilities"
    To: gentoo-announce@gentoo.org
    Date: Tue, 19 Apr 2005 07:03:28 +0200
    
    
    
    

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    Gentoo Linux Security Advisory GLSA 200504-17
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                                http://security.gentoo.org/
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

      Severity: Normal
         Title: XV: Multiple vulnerabilities
          Date: April 19, 2005
          Bugs: #88742
            ID: 200504-17

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    Synopsis
    ========

    Multiple vulnerabilities have been discovered in XV, potentially
    resulting in the execution of arbitrary code.

    Background
    ==========

    XV is an interactive image manipulation program for the X Window
    System.

    Affected packages
    =================

        -------------------------------------------------------------------
         Package / Vulnerable / Unaffected
        -------------------------------------------------------------------
      1 media-gfx/xv < 3.10a-r11 >= 3.10a-r11

    Description
    ===========

    Greg Roelofs has reported multiple input validation errors in XV image
    decoders. Tavis Ormandy of the Gentoo Linux Security Audit Team has
    reported insufficient validation in the PDS (Planetary Data System)
    image decoder, format string vulnerabilities in the TIFF and PDS
    decoders, and insufficient protection from shell meta-characters in
    malformed filenames.

    Impact
    ======

    Successful exploitation would require a victim to view a specially
    created image file using XV, potentially resulting in the execution of
    arbitrary code.

    Workaround
    ==========

    There is no known workaround at this time.

    Resolution
    ==========

    All XV users should upgrade to the latest version:

        # emerge --sync
        # emerge --ask --oneshot --verbose ">=media-gfx/xv-3.10a-r11"

    Availability
    ============

    This GLSA and any updates to it are available for viewing at
    the Gentoo Security Website:

      http://security.gentoo.org/glsa/glsa-200504-17.xml

    Concerns?
    =========

    Security is a primary focus of Gentoo Linux and ensuring the
    confidentiality and security of our users machines is of utmost
    importance to us. Any security concerns should be addressed to
    security@gentoo.org or alternatively, you may file a bug at
    http://bugs.gentoo.org.

    License
    =======

    Copyright 2005 Gentoo Foundation, Inc; referenced text
    belongs to its owner(s).

    The contents of this document are licensed under the
    Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.0

    
    

    
    

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/



  • Next message: Sune Kloppenborg Jeppesen: "[Full-disclosure] [gentoo-announce] [ GLSA 200504-17 ] XV: Multiple vulnerabilities"

    Relevant Pages