CVE-2008-0544

Publication date 1 February 2008

Last updated 24 July 2024

Ubuntu priority

Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
sdl-image1.2	7.10 gutsy	Fixed 1.2.5-3ubuntu0.1
	7.04 feisty	Fixed 1.2.5-2ubuntu0.7.04.1
	6.10 edgy	Fixed 1.2.5-2ubuntu0.6.10.1
	6.06 LTS dapper	Fixed 1.2.4-1ubuntu0.1

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
sdl-image1.2	Vendor: http://www.debian.org/security/2008/dsa-1493 Debdiff: https://bugs.launchpad.net/ubuntu/+source/sdl-image1.2/+bug/185782

References

Related Ubuntu Security Notices (USN)

USN-595-1
SDL_image vulnerabilities
26 March 2008

Other references

https://www.cve.org/CVERecord?id=CVE-2008-0544