FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

imlib -- BMP decoder heap buffer overflow

Affected packages
imlib < 1.9.14_4


VuXML ID 00644f03-fb58-11d8-9837-000c41e2cdad
Discovery 2004-08-25
Entry 2004-08-31
Modified 2004-09-02

Marcus Meissner discovered that imlib's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. It is believed that this bug could be exploited for arbitrary code execution.


CVE Name CVE-2004-0817