Debian Imlib2 vulnerabilities

CVE-2024-25450 [HIGH] CVE-2024-25450: imlib2 - imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init... imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init_imlib_fonts(). Scope: local bookworm: resolved (fixed in 1.10.0-2) bullseye: resolved (fixed in 1.7.1-2+deb11u1) forky: resolved (fixed in 1.10.0-2) sid: resolved (fixed in 1.10.0-2) trixie: resolved (fixed in 1.10.0-2)

CVE-2024-25448 [HIGH] CVE-2024-25448: imlib2 - An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows at... An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. Scope: local bookworm: resolved (fixed in 1.10.0-2) bullseye: resolved (fixed in 1.7.1-2+deb11u1) forky: resolved (fixed in 1.10.0-2) sid: resolved (fixed in 1.10.0-2) trixie: resolved (fixed in 1.10.0-2)

CVE-2024-25447 [HIGH] CVE-2024-25447: imlib2 - An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 all... An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. Scope: local bookworm: resolved (fixed in 1.10.0-2) bullseye: resolved (fixed in 1.7.1-2+deb11u1) forky: resolved (fixed in 1.10.0-2) sid: resolved (fixed in 1.10.0-2) trixie: resolved (fixed in 1.10.0-2)

CVE-2020-12761 [CRITICAL] CVE-2020-12761: imlib2 - modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resul... modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map. Scope: local bookworm: resolved (fixed in 1.6.1-2) bullseye: resolved (fixed in 1.6.1-2) forky: resolved (fixed in 1.6.1-2) sid: resolved (fixed in 1.6.1-2) trixie: resolved (fixed

CVE-2016-4024 [CRITICAL] CVE-2016-4024: imlib2 - Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attack... Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation. Scope: local bookworm: resolved (fixed in 1.4.8-1) bullseye: resolved (fixed in 1.4.8-1) forky: resolved (fixed in 1.4.8-1) sid: resolved (fixed in 1.4.8-1) trixi

CVE-2016-3994 [HIGH] CVE-2016-3994: imlib2 - The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial ... The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read. Scope: local bookworm: resolved (fixed in 1.4.8-1) bullseye: resolved (fixed in 1.4.8-1) forky: resolved (fixed in 1.4.8-1) sid: resolved (fixed in 1.4.8-1) trixie: reso

CVE-2016-3993 [HIGH] CVE-2016-3993: imlib2 - Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 ... Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates. Scope: local bookworm: resolved (fixed in 1.4.8-1) bullseye: resolved (fixed in 1.4.8-1) forky: resolved (fixed in 1.4.8-1) sid: resolved (fixed in 1.4.8-1)

CVE-2014-9762 [HIGH] CVE-2014-9762: imlib2 - imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmen... imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a GIF image without a colormap. Scope: local bookworm: resolved (fixed in 1.4.7-1) bullseye: resolved (fixed in 1.4.7-1) forky: resolved (fixed in 1.4.7-1) sid: resolved (fixed in 1.4.7-1) trixie: resolved (fixed in 1.4.7-1)

CVE-2014-9763 [HIGH] CVE-2014-9763: imlib2 - imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide... imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file. Scope: local bookworm: resolved (fixed in 1.4.7-1) bullseye: resolved (fixed in 1.4.7-1) forky: resolved (fixed in 1.4.7-1) sid: resolved (fixed in 1.4.7-1) trixie: resolved (fixed in 1.4.7-1)

CVE-2014-9764 [HIGH] CVE-2014-9764: imlib2 - imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmen... imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file. Scope: local bookworm: resolved (fixed in 1.4.7-1) bullseye: resolved (fixed in 1.4.7-1) forky: resolved (fixed in 1.4.7-1) sid: resolved (fixed in 1.4.7-1) trixie: resolved (fixed in 1.4.7-1)

CVE-2014-9771 [HIGH] CVE-2014-9771: imlib2 - Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denia... Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation. Scope: local bookworm: resolved (fixed in 1.4.7-1) bullseye: resolved (fixed in 1.4.7-1) forky: resolved (fixed in 1.4.7-1) sid: resolved (fixed in 1.4.7-1) trixie: resolved

CVE-2011-5326 [HIGH] CVE-2011-5326: imlib2 - imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide... imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse. Scope: local bookworm: resolved (fixed in 1.4.8-1) bullseye: resolved (fixed in 1.4.8-1) forky: resolved (fixed in 1.4.8-1) sid: resolved (fixed in 1.4.8-1) trixie: resolved (fixed in 1.4.8-1)

CVE-2010-0991 [MEDIUM] CVE-2010-0991: imlib2 - Multiple heap-based buffer overflows in imlib2 1.4.3 allow context-dependent att... Multiple heap-based buffer overflows in imlib2 1.4.3 allow context-dependent attackers to execute arbitrary code via a crafted (1) ARGB, (2) XPM, or (3) BMP file, related to the IMAGE_DIMENSIONS_OK macro in lib/image.h. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2008-6079 [CRITICAL] CVE-2008-6079: imlib2 - imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified im... imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to "several heap and stack based buffer overflows - partly due to integer overflows." Scope: local bookworm: resolved (fixed in 1.4.2-1) bullseye: resolved (fixed in 1.4.2-1) forky: resol

CVE-2008-5187 [CRITICAL] CVE-2008-5187: imlib2 - The load function in the XPM loader for imlib2 1.4.2, and possibly other version... The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability than CVE-2008-2426. Scope: local bookworm: resolved (fixed in 1.4.0-

CVE-2008-2426 [CRITICAL] CVE-2008-2426: imlib2 - Multiple stack-based buffer overflows in Imlib 2 (aka imlib2) 1.4.0 allow user-a... Multiple stack-based buffer overflows in Imlib 2 (aka imlib2) 1.4.0 allow user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via (1) a PNM image with a crafted header, related to the load function in src/modules/loaders/loader_pnm.c; or (2) a crafted XPM image, related to the load function in src/modules/loader_xp

CVE-2006-4809 [MEDIUM] CVE-2006-4809: imlib2 - Stack-based buffer overflow in loader_pnm.c in imlib2 before 1.2.1, and possibly... Stack-based buffer overflow in loader_pnm.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM image. Scope: local bookworm: resolved (fixed in 1.3.0.0debian1-3) bullseye: resolved (fixed in 1.3.0.0debian1-3) forky: resolved (fixed in 1.3

CVE-2006-4808 [LOW] CVE-2006-4808: imlib2 - Heap-based buffer overflow in loader_tga.c in imlib2 before 1.2.1, and possibly ... Heap-based buffer overflow in loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TGA image. Scope: local bookworm: resolved (fixed in 1.3.0.0debian1-3) bullseye: resolved (fixed in 1.3.0.0debian1-3) forky: resolved (fixed in 1.3.0.0

CVE-2006-4807 [LOW] CVE-2006-4807: imlib2 - loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-as... loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) via a crafted TGA image that triggers an out-of-bounds memory read, a different issue than CVE-2006-4808. Scope: local bookworm: resolved (fixed in 1.3.0.0debian1-3) bullseye: resolved (fixed in 1.3.0.0debian1-3) forky: resolved (f

CVE-2006-4806 [MEDIUM] CVE-2006-4806: imlib2 - Multiple integer overflows in imlib2 allow user-assisted remote attackers to cau... Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) ARGB (loader_argb.c), (2) PNG (loader_png.c), (3) LBM (loader_lbm.c), (4) JPEG (loader_jpeg.c), or (5) TIFF (loader_tiff.c) images. Scope: local bookworm: resolved (fixed in 1.3.0.0debian1-3) bullseye: re