|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Patroklos Argyroudis (argp
census-labs.com)
Date: Sat Dec 12 2009 - 17:29:49 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sat, Dec 12, 2009 at 10:59:28PM +0200, Razuel Akaharnath wrote:
> DESCRIPTION:
> "The gif2png program converts files from the obsolescent Graphic Interchange
> Format to Portable Network Graphics <http://www.libpng.org/pub/png/>. The
> conversion preserves all graphic information, including transparency,
> perfectly. The gif2png program can even recover data from corrupted GIFs."
>
> homepage: http://catb.org/~esr/gif2png/ <http://catb.org/%7Eesr/gif2png/>
>
> VULNERABILITY:
> gif2png does not perform proper bounds checking on the size of input
> filename. The buffer (1025 in size) is easily overrun with a strcpy
> function.
>
> AFFECTED VERSION:
> latest: 2.5.2
I have reported this to Debian about two months ago:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550978
--
Patroklos Argyroudis
http://www.census-labs.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]