CVE-2004-1025

Publication date 10 January 2005

Last updated 24 July 2024

Ubuntu priority

Multiple heap-based buffer overflows in imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service (application crash) and execute arbitrary code via certain image files.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
imlib2	7.04 feisty	Fixed 1.3.0.0debian1-4build1
	6.10 edgy	Fixed 1.2.1-2ubuntu1.2
	6.06 LTS dapper	Fixed 1.2.1-2ubuntu0.2

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-53-1
imlib vulnerabilities
29 December 2004

USN-55-1
imlib2 vulnerabilities
7 January 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2004-1025