FrSIRT - Mandriva Security Update Fixes SDL_image Buffer Overflow Issues / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Mandriva Security Update Fixes SDL_image Buffer Overflow Issues

Title : Mandriva Security Update Fixes SDL_image Buffer Overflow Issues
Advisory ID : FrSIRT/ADV-2008-0457
CVE ID : CVE-2007-6697 - CVE-2008-0544
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-02-08

Advisory Details

Description

Affected Products

Solution

References

Technical Description

Two vulnerabilities have been identified in Mandriva, which could be exploited by attackers to cause a denial of service or execute arbitrary code [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.0:
3b60927741b60c634afd430c5aa4ae00 2007.0/i586/libSDL_image1.2-1.2.5-1.1mdv2007.0.i586.rpm
71875c2de4180b5958a91107a974e327 2007.0/i586/libSDL_image1.2-devel-1.2.5-1.1mdv2007.0.i586.rpm
89b1410a912346b148393f95e01cfee0 2007.0/i586/libSDL_image1.2-test-1.2.5-1.1mdv2007.0.i586.rpm
f0142948917c13c85db6d9a414a744b2 2007.0/SRPMS/SDL_image-1.2.5-1.1mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
d2857eb81cc32a44621d047b432fab33 2007.0/x86_64/lib64SDL_image1.2-1.2.5-1.1mdv2007.0.x86_64.rpm
41ef7e520b3cca2670fcd0cb149f7c63 2007.0/x86_64/lib64SDL_image1.2-devel-1.2.5-1.1mdv2007.0.x86_64.rpm
ffa3317bcb0516f791317f2f917a8b74 2007.0/x86_64/lib64SDL_image1.2-test-1.2.5-1.1mdv2007.0.x86_64.rpm
f0142948917c13c85db6d9a414a744b2 2007.0/SRPMS/SDL_image-1.2.5-1.1mdv2007.0.src.rpm

Mandriva Linux 2007.1:
bb2d59af04d2816958816e327dbda0bc 2007.1/i586/libSDL_image1.2-1.2.5-2.1mdv2007.1.i586.rpm
44ce0300888500b1d1e4a3100ad268eb 2007.1/i586/libSDL_image1.2-devel-1.2.5-2.1mdv2007.1.i586.rpm
5441a072b2d68546aa54ed36e54829d5 2007.1/i586/libSDL_image1.2-test-1.2.5-2.1mdv2007.1.i586.rpm
e154807a8ec099e1d3dc547b932ceff6 2007.1/SRPMS/SDL_image-1.2.5-2.1mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
bc77c3b06e626902adc6372ef553442c 2007.1/x86_64/lib64SDL_image1.2-1.2.5-2.1mdv2007.1.x86_64.rpm
0fca19243b1718cce5b696bc4a0c6028 2007.1/x86_64/lib64SDL_image1.2-devel-1.2.5-2.1mdv2007.1.x86_64.rpm
a700e02ec34d2c29faa682da74545d8b 2007.1/x86_64/lib64SDL_image1.2-test-1.2.5-2.1mdv2007.1.x86_64.rpm
e154807a8ec099e1d3dc547b932ceff6 2007.1/SRPMS/SDL_image-1.2.5-2.1mdv2007.1.src.rpm

Mandriva Linux 2008.0:
e40fff1a799fe26e0374702198768c48 2008.0/i586/libSDL_image1.2-1.2.6-1.1mdv2008.0.i586.rpm
1a021d41e4efa44a2df41939e70aa479 2008.0/i586/libSDL_image1.2-devel-1.2.6-1.1mdv2008.0.i586.rpm
22a22ac45381677f13e3b053c62f47d4 2008.0/i586/libSDL_image1.2-test-1.2.6-1.1mdv2008.0.i586.rpm
0ed8f31fca8e68ee38e66714ed0b2ea5 2008.0/SRPMS/SDL_image-1.2.6-1.1mdv2008.0.src.rpm

Mandriva Linux 2008.0/X86_64:
aaf18e912ee7ae18060f5a45f8b52d5c 2008.0/x86_64/lib64SDL_image1.2-1.2.6-1.1mdv2008.0.x86_64.rpm
63c882b5750b11cf1aec1669d26eed40 2008.0/x86_64/lib64SDL_image1.2-devel-1.2.6-1.1mdv2008.0.x86_64.rpm
96b96533f54e7297fb68e0de1682bc28 2008.0/x86_64/lib64SDL_image1.2-test-1.2.6-1.1mdv2008.0.x86_64.rpm
0ed8f31fca8e68ee38e66714ed0b2ea5 2008.0/SRPMS/SDL_image-1.2.6-1.1mdv2008.0.src.rpm

Corporate 3.0:
3eb65d139568c061dd34e599a7ebdfdb corporate/3.0/i586/libSDL_image1.2-1.2.3-3.1.C30mdk.i586.rpm
fce96c4bfc823e5f8ae308daedabbdfe corporate/3.0/i586/libSDL_image1.2-devel-1.2.3-3.1.C30mdk.i586.rpm
828b87047944aec9533b04f9e95df814 corporate/3.0/i586/libSDL_image1.2-test-1.2.3-3.1.C30mdk.i586.rpm
47cd75e075030313a3259560d7173de7 corporate/3.0/SRPMS/SDL_image-1.2.3-3.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
700a0b9eeceb7958270c7469b4d9526e corporate/3.0/x86_64/lib64SDL_image1.2-1.2.3-3.1.C30mdk.x86_64.rpm
0247d9f7c8c3c07b0a6d8eaf0ddb49ad corporate/3.0/x86_64/lib64SDL_image1.2-devel-1.2.3-3.1.C30mdk.x86_64.rpm
d88895f601d1ead8ceef727e141c06ae corporate/3.0/x86_64/lib64SDL_image1.2-test-1.2.3-3.1.C30mdk.x86_64.rpm
47cd75e075030313a3259560d7173de7 corporate/3.0/SRPMS/SDL_image-1.2.3-3.1.C30mdk.src.rpm

ChangeLog

2008-02-08 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Sun Logical Domain Manager Local Privilege Escalation Vulnerability
	Sun StarOffice/StarSuite EMF Handling Buffer Overflow Vulnerability
	Sun Java Messaging Server Cross Site Scripting Vulnerability
	Sun Solaris IP Filter NAT Service DNS Cache Poisoning Vulnerability
	Sun Java System Identity Manager Security Bypass Vulnerabilities
	Sun Solaris DHCP Buffer Overflow and Denial of Service
	Sun Solstice X.25 "/dev/xty" Local Denial of Service Vulnerability

	Cisco IOS/CatOS VLAN Trunking Protocol DoS Vulnerability
	Cisco PIX and ASA Security Bypass and Denial of Service
	Cisco Unity Security Bypass and Denial of Service
	Cisco UCM SIP Remote Denial of Service
	Cisco IOS Denial of Service and Security Bypass Vulnerabilities
	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability

	Mozilla Products Code Execution and Security Bypass Vulnerabilities
	Mozilla Firefox Shortcut Handlingg Information Disclosure Vulnerability
	Mozilla Products Code Execution and Security Bypass Vulnerabilities
	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution and Security Bypass Issues
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability