CVE-2006-4807

8 documents8 sources

Severity

2.6LOW

EPSS

3.3%

top 12.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Enlightenment Imlib2

Timeline

PublishedNov 7

Latest updateMay 1

Description

loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted TGA image that triggers an out-of-bounds memory read, a different issue than CVE-2006-4808.

CVSS vector

AV:N/AC:H/C:N/I:N/A:PExploitability: 4.9 | Impact: 2.9

Affected Packages2 packages

▶Debianimlib2< 1.3.0.0debian1-3+3

▶NVDenlightenment/imlib29 versions+8

Patches

Patch: secunia.com ↗Patch: www.ubuntu.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-qw58-8vpf-jmmg: loader_tga↗2022-05-01

▶

CVEList

CVE-2006-4807: loader_tga↗2006-11-07

▶

OSV

CVE-2006-4807: loader_tga↗2006-11-07

▶

📋Vendor Advisories

Ubuntu

imlib2 vulnerabilities↗2006-11-03

▶

Debian

CVE-2006-4807: imlib2 - loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-as...↗2006

▶

Red Hat

CVE-2006-4807: loader_tga↗

▶

💬Community

Bugzilla

CVE-2006-480[6-9] imlib2 multiple vulnerabilities↗2006-11-08

▶