FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xli -- integer overflows in image size calculations

Affected packages
xli <= 1.17.0_1

Details

VuXML ID bfbbd505-3bd6-409c-8c67-445d3635cf4b
Discovery 2005-02-08
Entry 2005-06-03

Tavis Ormandy discovered several integer overflows in xli's image size handling. A maliciously crafted image may be able to cause a heap buffer overflow and execute arbitrary code.

References

CVE Name CVE-2005-0639
URL http://bugs.gentoo.org/show_bug.cgi?id=79762
URL http://pantransit.reptiles.org/prog/xli/CHANGES