正文

CamlImages PNG图形解析多个整数溢出漏洞

admin
admin V管理员 /0 评论 /9 阅读
0105
此篇文章发布距今已超过1270天,您需要注意文章的内容或图片是否可用!

漏洞信息详情

CamlImages PNG图形解析多个整数溢出漏洞

  • CNNVD编号:CNNVD-200907-060
    • <!--
  • 危害等级: 高危-->
  • 危害等级: 高危
  • CVE编号: CVE-2009-2295
  • 漏洞类型: 数字错误
  • 发布时间: 2009-07-05
  • 威胁类型: 远程
  • 更新时间: 2009-07-07
  • 厂        商: jun_furuse
  • 漏洞来源: Tielei Wang wangt...

漏洞简介

CamlImages是一个开放源码的图形处理库。

CamlImages库的read_png_file和read_png_file_as_rgb24函数在处理畸形图形文件时存在整数溢出漏洞。如果用户受骗打开了设置有超长宽度和高度值的恶意PNG图形文件的话,就可以触发这个溢出,导致执行任意代码。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:

Debian Linux 4.0 arm

? Debian libcamlimages-ocaml-dev_2.20-8+etch1_arm.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.20-8+etch1_arm.deb

? Debian libcamlimages-ocaml-doc_2.20-8+etch1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.20-8+etch1_all.deb

? Debian libcamlimages-ocaml_2.20-8+etch1_arm.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_arm.deb

Debian Linux 5.0 ia-64

? Debian libcamlimages-ocaml-dev_2.2.0-4+lenny1_ia64.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.2.0-4+lenny1_ia64.deb

? Debian libcamlimages-ocaml-doc_2.2.0-4+lenny1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.2.0-4+lenny1_all.deb

? Debian libcamlimages-ocaml_2.2.0-4+lenny1_ia64.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.2.0-4+lenny1_ia64.deb

Debian Linux 4.0 powerpc

? Debian libcamlimages-ocaml-dev_2.20-8+etch1_powerpc.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.20-8+etch1_powerpc.deb

? Debian libcamlimages-ocaml-doc_2.20-8+etch1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.20-8+etch1_all.deb

? Debian libcamlimages-ocaml_2.20-8+etch1_powerpc.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.20-8+etch1_powerpc.deb

MandrakeSoft Enterprise Server 5 x86_64

? Mandriva ocaml-camlimages-2.20-13.1mdvmes5.x86_64.rpm

http://www.mandriva.com/en/download/

? Mandriva ocaml-camlimages-devel-2.20-13.1mdvmes5.x86_64.rpm

http://www.mandriva.com/en/download/

Debian Linux 4.0 m68k

? Debian libcamlimages-ocaml-doc_2.20-8+etch1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.20-8+etch1_all.deb

Debian Linux 5.0 alpha

? Debian libcamlimages-ocaml-dev_2.2.0-4+lenny1_alpha.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.2.0-4+lenny1_alpha.deb

? Debian libcamlimages-ocaml-doc_2.2.0-4+lenny1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.2.0-4+lenny1_all.deb

? Debian libcamlimages-ocaml_2.2.0-4+lenny1_alpha.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.2.0-4+lenny1_alpha.deb

Debian Linux 5.0 ia-32

? Debian libcamlimages-ocaml-dev_2.2.0-4+lenny1_i386.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.2.0-4+lenny1_i386.deb

? Debian libcamlimages-ocaml-doc_2.2.0-4+lenny1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.2.0-4+lenny1_all.deb

? Debian libcamlimages-ocaml_2.2.0-4+lenny1_i386.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.2.0-4+lenny1_i386.deb

MandrakeSoft Enterprise Server 5

? Mandriva ocaml-camlimages-2.20-13.1mdvmes5.i586.rpm

http://www.mandriva.com/en/download/

? Mandriva ocaml-camlimages-devel-2.20-13.1mdvmes5.i586.rpm

http://www.mandriva.com/en/download/

Debian Linux 5.0 s/390

? Debian libcamlimages-ocaml-doc_2.2.0-4+lenny1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.2.0-4+lenny1_all.deb

Debian Linux 5.0 mipsel

? Debian libcamlimages-ocaml-dev_2.2.0-4+lenny1_mipsel.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-dev_2.2.0-4+lenny1_mipsel.deb

? Debian libcamlimages-ocaml-doc_2.2.0-4+lenny1_all.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml-doc_2.2.0-4+lenny1_all.deb

? Debian libcamlimages-ocaml_2.2.0-4+lenny1_mipsel.deb

http://security.debian.org/pool/updates/main/c/camlimages/libcamlimage s-ocaml_2.2.0-4+lenny1_mipsel.deb

Debian Linux 4.0 amd64

? Debian libcamlimages-ocaml-dev_2.20-8+etch1_amd64.deb

http://security.debian.org/pool/updates/main/c/camlimages/li

参考网址

来源: VUPEN

名称: ADV-2009-1874

链接:http://www.vupen.com/english/advisories/2009/1874

来源: BID

名称: 35556

链接:http://www.securityfocus.com/bid/35556

来源: BUGTRAQ

名称: 20090702 [oCERT-2009-009] CamlImages integer overflows

链接:http://www.securityfocus.com/archive/1/archive/1/504696/100/0/threaded

来源: MISC

链接:http://www.ocert.org/advisories/ocert-2009-009.html

来源: DEBIAN

名称: DSA-1832

链接:http://www.debian.org/security/2009/dsa-1832

来源: SECUNIA

名称: 35819

链接:http://secunia.com/advisories/35819

受影响实体

  • Jun_furuse Camlimages:2.2  
    <!--
    2000-1-1
    -->

补丁

    暂无