![oss-sec logo](/images/oss-sec-logo.png)
oss-sec mailing list archives
camlimages: Integer overflows in GIF and JPEG readers
From: Robert Buchholz <rbu () gentoo org>
Date: Sat, 25 Jul 2009 14:24:01 +0200
Hello, oCERT reported integer overflows in camlimages when reading PNG images earlier this month (oCERT-2009-009), CVE-2009-2295 was assigned. Upstream has since incorporated the RedHat patch into their CVS: http://camlcvs.inria.fr/cgi-bin/cvsweb.cgi/bazar-ocaml/camlimages/src/?sortby=date They also fixed similar integer overflows in gifread.c and jpegread.c for values that are used in memory allocations and memcpy(). At least Debian used the existing CVE identifier only for the PNG vulnerabilities, so a new identifier might be needed. A stripped down [by Alexis Ballier] version of the patch is in out BZ: https://bugs.gentoo.org/show_bug.cgi?id=276235 https://bugs.gentoo.org/attachment.cgi?id=199108 Robert
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- camlimages: Integer overflows in GIF and JPEG readers Robert Buchholz (Jul 25)