rpm package
suse/imlib2&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
pkg:rpm/suse/imlib2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-3994 | Hig | 8.2 | < 1.4.2-2.20.1 | 1.4.2-2.20.1 | May 13, 2016 | The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read. | |
| CVE-2016-3993 | Hig | 7.5 | < 1.4.2-2.20.1 | 1.4.2-2.20.1 | May 13, 2016 | Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates. | |
| CVE-2014-9764 | Hig | 7.5 | < 1.4.2-2.20.1 | 1.4.2-2.20.1 | May 13, 2016 | imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file. | |
| CVE-2014-9763 | Hig | 7.5 | < 1.4.2-2.20.1 | 1.4.2-2.20.1 | May 13, 2016 | imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file. | |
| CVE-2011-5326 | Hig | 7.5 | < 1.4.2-2.20.1 | 1.4.2-2.20.1 | May 13, 2016 | imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse. |
- affected < 1.4.2-2.20.1fixed 1.4.2-2.20.1
The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read.
- affected < 1.4.2-2.20.1fixed 1.4.2-2.20.1
Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.
- affected < 1.4.2-2.20.1fixed 1.4.2-2.20.1
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file.
- affected < 1.4.2-2.20.1fixed 1.4.2-2.20.1
imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file.
- affected < 1.4.2-2.20.1fixed 1.4.2-2.20.1
imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse.