From:
[email protected]
Package: qt-x11-free
Severity: grave
Tags: security sarge
Justification: user security hole
CVE reference: CAN-2004-0691
CAN-2004-0692
CAN-2004-0693
Description:
Chris Evans has reported a vulnerability in the Qt library, which
potentially can be exploited by malicious people to compromise a user's
system.
The vulnerability is caused due to boundary errors in the "read_dib()"
function when handling 8-bit RLE encoded BMP files. This can be
exploited by using an overly long length mark in order to cause a
heap-based buffer overflow.
Successful exploitation may allow execution of arbitrary code and can be exploited via any application using the Qt library to display or decode
BMP files.
NOTE: Some NULL pointer dereference errors within the handlers for XPM,
GIF, and JPEG images can also be exploited to cause a DoS (Denial of
Service).
The vulnerability affects version 3.3.2 and prior.
Solution:
Update to version 3.3.3.
Original Advisory:
http://secunia.com/advisories/12325/
Other:
http://scary.beasts.org/security/CESA-2004-004.txt
This probably also affects Woody.
- Adam
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-1-k7
Locale: LANG=C, LC_CTYPE=C
--
To UNSUBSCRIBE, email to
[email protected]
with a subject of "unsubscribe". Trouble? Contact
[email protected]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)