Bug#437708: CVE-2007-3568: DoS vulnerability with crafted bmp

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#437708: CVE-2007-3568: DoS vulnerability with crafted bmp
From: Stefan Fritsch <sf@sfritsch.de>
Date: Mon, 13 Aug 2007 21:23:55 +0200
Message-id: <[🔎] 20070813192355.24431.69041.reportbug@k.lan>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 437708@bugs.debian.org

Package: imlib11
Version: 1.9.15-2
Severity: important
Tags: security

>From CVE-2007-3568:

"The _LoadBMP function in imlib 1.9.15 and earlier allows
context-dependent attackers to cause a denial of service (infinite
loop) via a BMP image with a Bits Per Page (BPP) value of 0."

See http://www.securiteam.com/unixfocus/5WP030UM0W.html for more information.

Please mention the CVE id in the changelog.

Reply to:

Follow-Ups:
- Bug#437708: marked as done (CVE-2007-3568: DoS vulnerability with crafted bmp)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#407575: playground doesn't do anything - solution
Next by Date: Bug#437711: xterm needed to display information with simulavr-disp
Previous by thread: Bug#407575: playground doesn't do anything - solution
Next by thread: Bug#437708: marked as done (CVE-2007-3568: DoS vulnerability with crafted bmp)
Index(es):
- Date
- Thread