Back to search
CVE-2007-6697
Published: Feb 1, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in the LWZReadByte function in IMG_gif.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF file, a similar issue to CVE-2006-4484. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
sdlimage-gif-bo(39865)
vdb-entry
x_refsource_XF
28869
third-party-advisory
x_refsource_SECUNIA
28850
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-1208
vendor-advisory
x_refsource_FEDORA
28752
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-2206
x_refsource_CONFIRM
FEDORA-2008-1231
vendor-advisory
x_refsource_FEDORA
http://bugs.gentoo.org/show_bug.cgi?id=207933
x_refsource_CONFIRM
29542
third-party-advisory
x_refsource_SECUNIA
DSA-1493
vendor-advisory
x_refsource_DEBIAN
27417
vdb-entry
x_refsource_BID
28640
third-party-advisory
x_refsource_SECUNIA
http://wiki.rpath.com/Advisories:rPSA-2008-0061
x_refsource_CONFIRM
20080213 rPSA-2008-0061-1 SDL_image
mailing-list
x_refsource_BUGTRAQ
28830
third-party-advisory
x_refsource_SECUNIA
20080123 SDL_Image 1.2.6 and prior GIF handling buffer overflow
mailing-list
x_refsource_BUGTRAQ
GLSA-200802-01
vendor-advisory
x_refsource_GENTOO
http://vexillium.org/?sec-sdlgif
x_refsource_MISC
USN-595-1
vendor-advisory
x_refsource_UBUNTU
ADV-2008-0266
vdb-entry
x_refsource_VUPEN
MDVSA-2008:040
vendor-advisory
x_refsource_MANDRIVA
28837
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now