Debian Xloadimage vulnerabilities

CVE-2006-4484 [LOW] CVE-2006-4484: libgd2 - Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the ... Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array. Scope: local bookworm: resolved (fixed in 2.0.33-5.1) bullseye: resolved (fixed in 2

CVE-2005-0639 [HIGH] CVE-2005-0639: xli - Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execut... Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files. Scope: local bookworm: resolved (fixed in 1.17.0-17) bullseye: resolved (fixed in 1.17.0-17) forky: resolved (fixed in 1.17.0-17) sid: resolved (fixed

CVE-2005-0638 [HIGH] CVE-2005-0638: xli - xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbit... xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which are not properly quoted when calling the gunzip command. Scope: local bookworm: resolved (fixed in 1.17.0-18) bullseye: resolved (fixed in 1.17.0-18) forky: resolved (fixed in 1.17.0-18) sid: resolved (fixed in 1.

CVE-2005-3178 [MEDIUM] CVE-2005-3178: xli - Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assiste... Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations. Scope: local bookworm: resolved (fixed in 1.17.0-20) bullseye: resolved (fixed in 1.17.0-20) forky: resolved (fixed in 1.17.0-20) sid