fkie_cve-2008-6079
Vulnerability from fkie_nvd
Published
2009-02-06 11:30
Modified
2025-04-09 00:30
Severity ?
Summary
imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to "several heap and stack based buffer overflows - partly due to integer overflows."
References
cve@mitre.orghttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469
cve@mitre.orghttp://secunia.com/advisories/32354Vendor Advisory
cve@mitre.orghttp://secunia.com/advisories/39340
cve@mitre.orghttp://sourceforge.net/project/shownotes.php?release_id=634778
cve@mitre.orghttp://www.debian.org/security/2010/dsa-2029
cve@mitre.orghttp://www.securityfocus.com/bid/31880
cve@mitre.orghttp://www.vupen.com/english/advisories/2008/2898
cve@mitre.orghttp://www.vupen.com/english/advisories/2010/0803
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/46037
af854a3a-2127-422b-91ae-364da2661108http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/32354Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/39340
af854a3a-2127-422b-91ae-364da2661108http://sourceforge.net/project/shownotes.php?release_id=634778
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2010/dsa-2029
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/31880
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/2898
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/0803
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/46037
Impacted products
Vendor Product Version
enlightenment imlib2 *
enlightenment imlib2 1.0
enlightenment imlib2 1.0.1
enlightenment imlib2 1.0.2
enlightenment imlib2 1.0.3
enlightenment imlib2 1.0.4
enlightenment imlib2 1.0.5
enlightenment imlib2 1.1
enlightenment imlib2 1.1.1
enlightenment imlib2 1.1.2
enlightenment imlib2 1.2.1
enlightenment imlib2 1.2.2
enlightenment imlib2 1.3.0
enlightenment imlib2 1.4.0


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A6997D8-C9BF-4E5F-BD99-CEEDD8CEBAB7",
              "versionEndIncluding": "1.4.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7E1CF072-E421-4BAA-9B29-421B101171B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "630D2700-3AF2-4F6C-B045-41571B602B86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "1750F261-8A88-4C9C-A86B-ED1D6F41C408",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7606397B-A6F0-41AA-8DA2-B3ECBC7374EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "F69E5CC4-422F-4E4C-8E4C-8EA3479D759E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B6EC79E-A937-4781-AF55-35BCB2247C52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3DCF542-ABD1-448A-BD6F-F3FB4DB957C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6A7F9B2-116C-4AB8-98B0-729D0AB8545E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "77B82E04-D219-4F39-BADD-CFAC50B29831",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D5226AA6-9816-46EF-A6A3-3F96889947B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F57C34FD-CBD9-4FD7-98AB-8D9070BDAEB4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9339D529-EC82-4DC9-B5A3-FBB33D5244B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:enlightenment:imlib2:1.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1967608B-F636-43C2-9C10-56A36484FF09",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to \"several heap and stack based buffer overflows - partly due to integer overflows.\""
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades no especificadas en mlib2 anterior a v1.4.2 tienen un impacto y vectores de ataque desconocidos."
    }
  ],
  "id": "CVE-2008-6079",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-02-06T11:30:00.360",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/32354"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/39340"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sourceforge.net/project/shownotes.php?release_id=634778"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2010/dsa-2029"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/31880"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2898"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2010/0803"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46037"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/32354"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/39340"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sourceforge.net/project/shownotes.php?release_id=634778"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2010/dsa-2029"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/31880"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2898"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/0803"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46037"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.