Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 74474

Summary: media-gfx/[x?]zgv multiple-image segfault (CAN-2004-0999)
Product: Gentoo Security Reporter: Thierry Carrez (RETIRED) <koon>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
URL: http://www.debian.org/security/2004/dsa-608
Whiteboard:
Package list:
Runtime testing required: ---

Description Thierry Carrez (RETIRED) gentoo-dev 2004-12-15 05:01:29 UTC
From DSA 608-1 :

CAN-2004-0999
    Mikulas Patocka discovered that malicious multiple-image (e.g.
    animated) GIF images can cause a segmentation fault in zgv.

I don't think we patched this one... but I'm not sure it's really exploitable. DoS ? DoS what ?
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2004-12-15 05:07:54 UTC
This might impact xzgv as well.
Comment 2 Luke Macken (RETIRED) gentoo-dev 2004-12-16 06:21:49 UTC
The patches look the same to me.

I think this issue is taken care of.
Comment 3 Luke Macken (RETIRED) gentoo-dev 2004-12-16 06:24:12 UTC
Closing.  This issue was taken care of in the original upstrem patch.