Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2007-5378

Published: 11 October 2007

Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137.

From the Ubuntu Security Team

USN-529-1 It was discovered that Tk could be made to overrun a buffer when loading certain images. If a user were tricked into opening a specially crafted GIF image, remote attackers could cause a denial of service or execute arbitrary code with user privileges.

Priority

Low

Status

Package Release Status
libtk-img
Launchpad, Ubuntu, Debian 		dapper Ignored
(reached end-of-life)
gutsy Needed
(reached end-of-life)
hardy Ignored
(reached end-of-life)
intrepid
Released (1:1.3-release-7+lenny1build0.8.10.1)
jaunty Not vulnerable

karmic Not vulnerable

lucid Not vulnerable

maverick Not vulnerable

natty Not vulnerable

oneiric Not vulnerable

upstream
Released (1:1.3-release-8)
tk8.3
Launchpad, Ubuntu, Debian 		dapper
Released (8.3.5-4ubuntu1.1)
edgy
Released (8.3.5-6ubuntu1.1)
feisty
Released (8.3.5-6ubuntu2.1)
gutsy
Released (8.3.5-6ubuntu3)
hardy Not vulnerable
(8.3.5-12ubuntu1)
intrepid Not vulnerable

jaunty Not vulnerable

karmic Not vulnerable

lucid Not vulnerable

maverick Not vulnerable

natty Not vulnerable

oneiric Does not exist

upstream
Released (8.3.5-10)
tk8.4
Launchpad, Ubuntu, Debian 		dapper
Released (8.4.12-0ubuntu1.1)
edgy
Released (8.4.12-1ubuntu0.1)
feisty
Released (8.4.14-0ubuntu2.1)
gutsy
Released (8.4.15-1ubuntu1)
hardy Not vulnerable
(8.4.16-2ubuntu1)
intrepid Not vulnerable

jaunty Not vulnerable

karmic Not vulnerable

lucid Not vulnerable

maverick Not vulnerable

natty Not vulnerable

oneiric Not vulnerable

upstream
Released (8.4.16-1)

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading