Showing 1 - 5 of 5

CVE-2007-5378

Status Candidate

Overview

Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137.

Related Files

Debian Linux Security Advisory 1743-1: Posted Mar 17, 2009; Authored by Debian | Site debian.org; Debian Security Advisory 1743-1 - Two buffer overflows have been found in the GIF image parsing code of Tk, a cross-platform graphical toolkit, which could lead to the execution of arbitrary code.; tags | advisory, overflow, arbitrary; systems | linux, debian; advisories | CVE-2007-5137, CVE-2007-5378; SHA-256 | 35b15064604c133e468a9a193af31f544b9f9346d384b06639f9213e46c152ee; Download | Favorite | View

VMware Security Advisory 2008-0009: Posted Jun 5, 2008; Authored by VMware | Site vmware.com; VMware Security Advisory - Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues.; tags | advisory; advisories | CVE-2007-5671, CVE-2008-0967, CVE-2008-2097, CVE-2008-2100, CVE-2006-1721, CVE-2008-0553, CVE-2007-5378, CVE-2007-4772, CVE-2008-0888, CVE-2008-0062, CVE-2008-0063, CVE-2008-0948; SHA-256 | f098818652aa3effa44d42e138d658b7a0d4635486d171c6267c1242f5e9088e; Download | Favorite | View

Debian Linux Security Advisory 1416-1: Posted Nov 28, 2007; Authored by Debian | Site debian.org; Debian Security Advisory 1416-1 - It was discovered that Tk, a cross-platform graphical toolkit for Tcl performs insufficient input validation in the code used to load GIF images, which may lead to the execution of arbitrary code.; tags | advisory, arbitrary; systems | linux, debian; advisories | CVE-2007-5378; SHA-256 | 0c4d6292b13a01501302bcef3d53bd3d3f5c806f08a08eda4a7d8d67b8e70dc4; Download | Favorite | View

Debian Linux Security Advisory 1415-1: Posted Nov 28, 2007; Authored by Debian | Site debian.org; Debian Security Advisory 1415-1 - It was discovered that Tk, a cross-platform graphical toolkit for Tcl performs insufficient input validation in the code used to load GIF images, which may lead to the execution of arbitrary code.; tags | advisory, arbitrary; systems | linux, debian; advisories | CVE-2007-5378; SHA-256 | e3452025ce5f7fa647d6cdb89768db6ea9d091c8d44c9071f9aca03d87ec703c; Download | Favorite | View

Mandriva Linux Security Advisory 2007.200: Posted Oct 18, 2007; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - A vulnerablity in Tk was found that could be used to overrun a buffer when loading certain GIF images. If a user were tricked into opening a specially crafted GIF file, it could lead to a denial of service condition or possibly the execution of arbitrary code with the user's privileges.; tags | advisory, denial of service, overflow, arbitrary; systems | linux, mandriva; advisories | CVE-2007-5137, CVE-2007-5378; SHA-256 | fdee7478c7e7ee753aa4ed1d1053cb7018c3e5bd69240cd8459309b0d7473b47; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 64 files
Debian 22 files
Gentoo 8 files
Google Security Research 7 files
LiquidWorm 6 files
Apple 5 files
Jann Horn 3 files
Spencer McIntyre 3 files
Milad Karimi 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,175)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,140)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,480)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,022)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2007-5378

Overview

Related Files

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems