Fedora Essential and Critical Security Patch Updates - Page 864
Find the information you need for your favorite open source distribution .
Fedora Core 3 Update: initscripts-7.93.7-1
This update fixes various bugs, including several IPSEC bugs.
Fedora Core 3 Update: gtk2-2.4.14-3.fc3
David Costanzo found a bug in the way GTK+ processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack in applications linked against GTK+. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to this issue.
Fedora Core 2 Update: gtk2-2.4.14-2.fc2
David Costanzo found a bug in the way GTK+ processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack in applications linked against GTK+. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to this issue.
Fedora Core 3 Update: gdk-pixbuf-0.22.0-16.fc3
David Costanzo found a bug in the way gdk-pixbuf processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack in applications linked against gdk-pixbuf. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to this issue.
Fedora Core 3 Update: ImageMagick-6.2.0.7-2.fc3
Andrei Nigmatulin discovered a heap based buffer overflow flaw in the ImageMagick image handler. An attacker could create a carefully crafted Photoshop Document (PSD) image in such a way that it would cause ImageMagick to execute arbitrary code when processing the image.
Fedora Core 2 Update: gdk-pixbuf-0.22.0-12.fc2
David Costanzo found a bug in the way gdk-pixbuf processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack in applications linked against gdk-pixbuf. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to this issue.
Fedora Core 2 Update: ImageMagick-6.2.0.7-2.fc2
Andrei Nigmatulin discovered a heap based buffer overflow flaw in the ImageMagick image handler. An attacker could create a carefully crafted Photoshop Document (PSD) image in such a way that it would cause ImageMagick to execute arbitrary code when processing the image.
Fedora Core 2 Update: telnet-0.17-28.FC2.1
Two buffer overflow flaws were discovered in the way the telnet client handles messages from a server. An attacker may be able to execute arbitrary code on a victim's machine if the victim can be tricked into connecting to a malicious telnet server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-0468 and CAN-2005-0469 to these issues.
Fedora Core 3 Update: telnet-0.17-32.FC3.2
Two buffer overflow flaws were discovered in the way the telnet client handles messages from a server. An attacker may be able to execute arbitrary code on a victim's machine if the victim can be tricked into connecting to a malicious telnet server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-0468 and CAN-2005-0469 to these issues.
Fedora Core 2 Update: xorg-x11-6.7.0-14
An integer overflow flaw was found in libXpm, which is used by some applications for loading of XPM images. An attacker could create a malicious XPM file that would execute arbitrary code if opened by a victim using an application linked to the vulnerable library.
Fedora Core 3 Update: xorg-x11-6.8.2-1.FC3.13
An integer overflow flaw was found in libXpm, which is used by some applications for loading of XPM images.
Fedora Core 2 Update: krb5-1.3.6-4
Updated krb5 packages which fix two buffer overflow vulnerabilities in the included Kerberos-aware telnet client are now available.
