CVE-2008-6079

7 documents7 sources
Severity
10.0CRITICAL
EPSS
2.0%
top 16.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Enlightenment Imlib2
Timeline
PublishedFeb 6
Latest updateMay 17

Description

imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to "several heap and stack based buffer overflows - partly due to integer overflows."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

ā–¶Debianimlib2< 1.4.2-1+3
ā–¶NVDenlightenment/imlib21.4.1+13

šŸ”“Vulnerability Details

3
GHSA
GHSA-7hrq-pg32-qp7r: imlib2 before 1ā†—2022-05-17
ā–¶
CVEList
CVE-2008-6079: imlib2 before 1ā†—2009-02-06
ā–¶
OSV
CVE-2008-6079: imlib2 before 1ā†—2009-02-06
ā–¶

šŸ“‹Vendor Advisories

2
Red Hat
imlib2: New upstream release 1.4.2 contains security updatesā†—2008-10-21
ā–¶
Debian
CVE-2008-6079: imlib2 - imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified im...ā†—2008
ā–¶

šŸ’¬Community

1
Bugzilla
CVE-2008-6079 imlib2: New upstream release 1.4.2 contains security updatesā†—2008-10-21
ā–¶
CVE-2008-6079 (CRITICAL CVSS 10) | imlib2 before 1.4.2 allows context- | cvebase.io