Security buffer overflow: libtk-img packages arbitrary code execution
Posted by Vivek Gite
[Last updated: June 19, 2008]
It was discovered that a buffer overflow in the GIF image parsing code of Tk, a cross-platform graphical toolkit, could lead to denial of service and potentially the execution of arbitrary code. This is affected on all Linux / UNIX distributions.
Details:
Package : libtk-img
Vulnerability : buffer overflow
Problem type : local (remote)
Debian-specific: no
CVE Id(s) : CVE-2008-0553
Debian / Ubuntu Linux Fix
Type the following command:
# apt-get update
# apt-get upgrade
Tell us how we're doing: Please answer a few questions about your experience to help us improve nixCraft.
You may also be interested in other helpful articles:
- Security: mt-daapd DAAP audio server
- Debian Linux Kernel v2.6.18 Local / Remote Packages Fix Overflow Conditions Bug
- Security: imlib2 packages fix arbitrary code execution
- Security: NVIDIA Graphics Driver Blob Root Exploit found
- Security: Perl, XFree86, xorg-x11-server and other Update For Red Hat Linux (RHEL)
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Tags: arbitrary code, arbitrary code execution, buffer overflow, CVE-2008-0553, denial of service, Security, Ubuntu Linux, Update
Recent Comments
Today ~ 45 Comments
Today ~ 6 Comments
Yesterday ~ 5 Comments
Yesterday ~ 13 Comments
Yesterday ~ 50 Comments