FAQ   Search   Memberlist  
Profile    Log in to check your private messages    Register    Log in
Security Update: imlib for 10k & 20k

 
Post new topic   Reply to topic    BLAG Forum Index -> announcements
View previous topic :: View next topic  
Author Message
jebba
PostPosted: Fri Sep 10, 2004 12:02 am    Post subject: Security Update: imlib for 10k & 20k Reply with quote

Update your boxes with:

Code:
apt-get update
apt-get dist-upgrade


---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-301
2004-09-09
---------------------------------------------------------------------

Product : Fedora Core 2
Name : imlib
Version : 1.9.13
Release : 19
Summary : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.

Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.

---------------------------------------------------------------------
Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues.
---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- security fixes


---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

c6ed83101974d8283a4013a80e356c08 SRPMS/imlib-1.9.13-19.src.rpm
9f6952bd21d1157b4c10dde7f87b8a3d x86_64/imlib-1.9.13-19.x86_64.rpm
e70a8c0dec245aea672da1f1608e1e33
x86_64/imlib-devel-1.9.13-19.x86_64.rpm
64aa17fe9a0ea4efa9d48020212274c9
x86_64/imlib-cfgeditor-1.9.13-19.x86_64.rpm
48ef8b28ae79d1c7c82974e7f6b77e86
x86_64/debug/imlib-debuginfo-1.9.13-19.x86_64.rpm
d9d04d9df1981e22e45853789a99db19 i386/imlib-1.9.13-19.i386.rpm
9589803f0299131a91bf78ea62cf68c3 i386/imlib-devel-1.9.13-19.i386.rpm
b602fcb2d9d57b87abd57792b17c84c1
i386/imlib-cfgeditor-1.9.13-19.i386.rpm
fe0ab8902a4f20532cea1f1d988add08
i386/debug/imlib-debuginfo-1.9.13-19.i386.rpm


---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-300
2004-09-09
---------------------------------------------------------------------

Product : Fedora Core 1
Name : imlib
Version : 1.9.13
Release : 15.fc1
Summary : An image loading and rendering library for X11R6.
Description :
Imlib is a display depth independent image loading and rendering
library. Imlib is designed to simplify and speed up the process of
loading images and obtaining X Window System drawables. Imlib
provides many simple manipulation routines which can be used for
common operations.

Install imlib if you need an image loading and rendering library for
X11R6, or if you are installing GNOME. You may also want to install
the imlib-cfgeditor package, which will help you configure Imlib.

---------------------------------------------------------------------
Update Information:

Several heap overflow vulnerabilities have been found in the imlib BMP
image handler. An attacker could create a carefully crafted BMP file in
such a way that it would cause an application linked with imlib to
execute
arbitrary code when the file was opened by a victim. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name
CAN-2004-0817 to this issue.

Users of imlib should update to this updated package which contains
backported patches and is not vulnerable to these issues.

---------------------------------------------------------------------
* Thu Sep 09 2004 Matthias Clasen <mclasen@redhat.com>

- Security fixes


---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/

03a77921e2efd86e0703d66de59cad1c SRPMS/imlib-1.9.13-15.fc1.src.rpm
7c819092b3f54e6fba51460f10d4d2db x86_64/imlib-1.9.13-15.fc1.x86_64.rpm
296479ab2f3ebfdb1b43c4454d881009
x86_64/imlib-devel-1.9.13-15.fc1.x86_64.rpm
5b66680b22684df822ef4f38d6e87a35
x86_64/imlib-cfgeditor-1.9.13-15.fc1.x86_64.rpm
f211ba31e2b13a872d0c318b4892c624
x86_64/debug/imlib-debuginfo-1.9.13-15.fc1.x86_64.rpm
8bd4bb9bbcad02a8442edd5bd6afd8f2 i386/imlib-1.9.13-15.fc1.i386.rpm
469d4ed01e2ba0b49fdcd0fa01323052
i386/imlib-devel-1.9.13-15.fc1.i386.rpm
fa26f3f2c7a877c806b675fc8de68203
i386/imlib-cfgeditor-1.9.13-15.fc1.i386.rpm
7d0d786eb8e5ea9793c2505267a2f650
i386/debug/imlib-debuginfo-1.9.13-15.fc1.i386.rpm

Display posts from previous:   
Post new topic   Reply to topic    BLAG Forum Index -> announcements
Page 1 of 1

Protected by Anti-Spam ACP