CVE-2004-0688

Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.

🔗 References (46)

• cve@mitrehttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000924
• cve@mitrehttp://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch
• cve@mitrehttp://lists.apple.com/archives/security-announce/2005/May/msg00001.html
• cve@mitrehttp://marc.info/?l=bugtraq&m=109530851323415&w=2
• cve@mitrehttp://scary.beasts.org/security/CESA-2004-003.txt
• cve@mitrehttp://secunia.com/advisories/20235
• cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1
• cve@mitrehttp://www.debian.org/security/2004/dsa-560
• cve@mitrehttp://www.gentoo.org/security/en/glsa/glsa-200409-34.xml
• cve@mitrehttp://www.gentoo.org/security/en/glsa/glsa-200502-07.xml
• cve@mitrehttp://www.kb.cert.org/vuls/id/537878
• cve@mitrehttp://www.mandriva.com/security/advisories?name=MDKSA-2004:098
• cve@mitrehttp://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html
• cve@mitrehttp://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
• cve@mitrehttp://www.redhat.com/support/errata/RHSA-2004-537.html