CVE-2010-4694

Related Files

Gentoo Linux Security Advisory 201203-15

Posted Mar 16, 2012

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-15 - Multiple vulnerabilities have been found in gif2png, the worst of which might allow execution of arbitrary code. Versions less than 2.5.8 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2010-4694, CVE-2010-4695

SHA-256 | 8a397fa1e661394cba4da8da2652a15bef30a769ec2508d443be785b80861d88

Download | Favorite | View

Mandriva Linux Security Advisory 2011-009

Posted Jan 14, 2011

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-009 - Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png. Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as.p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.

tags | advisory, denial of service, overflow, arbitrary, cgi

systems | linux, mandriva

advisories | CVE-2009-5018, CVE-2010-4694

SHA-256 | 76e0bcc1c9ba81bbf81706d454d9420f4d4853d0b97080829654f06c6930215a

Download | Favorite | View