[Full-disclosure] [gentoo-announce] [ GLSA 200504-17 ] XV: Multiple vulnerabilities

From: Sune Kloppenborg Jeppesen (jaervosz_at_gentoo.org)
Date: 04/19/05

  • Next message: Mandriva Security Team: "[Full-disclosure] MDKSA-2005:072 - Updated php packages fix multiple vulnerabilities"
    Date: Tue, 19 Apr 2005 07:03:28 +0200
    To: the_eye@drei.at
    
    
    
    

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
    Gentoo Linux Security Advisory GLSA 200504-17
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                                http://security.gentoo.org/
    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

      Severity: Normal
         Title: XV: Multiple vulnerabilities
          Date: April 19, 2005
          Bugs: #88742
            ID: 200504-17

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    Synopsis
    ========

    Multiple vulnerabilities have been discovered in XV, potentially
    resulting in the execution of arbitrary code.

    Background
    ==========

    XV is an interactive image manipulation program for the X Window
    System.

    Affected packages
    =================

        -------------------------------------------------------------------
         Package / Vulnerable / Unaffected
        -------------------------------------------------------------------
      1 media-gfx/xv < 3.10a-r11 >= 3.10a-r11

    Description
    ===========

    Greg Roelofs has reported multiple input validation errors in XV image
    decoders. Tavis Ormandy of the Gentoo Linux Security Audit Team has
    reported insufficient validation in the PDS (Planetary Data System)
    image decoder, format string vulnerabilities in the TIFF and PDS
    decoders, and insufficient protection from shell meta-characters in
    malformed filenames.

    Impact
    ======

    Successful exploitation would require a victim to view a specially
    created image file using XV, potentially resulting in the execution of
    arbitrary code.

    Workaround
    ==========

    There is no known workaround at this time.

    Resolution
    ==========

    All XV users should upgrade to the latest version:

        # emerge --sync
        # emerge --ask --oneshot --verbose ">=media-gfx/xv-3.10a-r11"

    Availability
    ============

    This GLSA and any updates to it are available for viewing at
    the Gentoo Security Website:

      http://security.gentoo.org/glsa/glsa-200504-17.xml

    Concerns?
    =========

    Security is a primary focus of Gentoo Linux and ensuring the
    confidentiality and security of our users machines is of utmost
    importance to us. Any security concerns should be addressed to
    security@gentoo.org or alternatively, you may file a bug at
    http://bugs.gentoo.org.

    License
    =======

    Copyright 2005 Gentoo Foundation, Inc; referenced text
    belongs to its owner(s).

    The contents of this document are licensed under the
    Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.0

    
    

    -- 
    gentoo-announce@gentoo.org mailing list
    
    

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/

    -- 
    gentoo-announce@gentoo.org mailing list
    


  • Next message: Mandriva Security Team: "[Full-disclosure] MDKSA-2005:072 - Updated php packages fix multiple vulnerabilities"

    Relevant Pages