Vulnerability Note VU#378049

Overview

The Utah Raster Toolkit is a graphics library/utility. Several vulnerabilities have been reported in the Utah Raster Toolkit.

Description

The Utah Raster Toolkit is a graphics library/utility. Several vulnerabilities have been reported in the Utah Raster Toolkit.

Impact

The complete impact of these vulnerability is not yet known. These vulnerabilities may be used to cause a denial of service situation or permit the execution of code.

Solution

Please see your vendor notification for a vendor specific patch.

Systems Affected (Learn More)

Vendor	Status	Date Notified	Date Updated
Debian	Affected	-	17 Mar 2003
Red Hat Inc.	Affected	-	03 Apr 2003
Utah Raster Toolkit	Affected	13 Feb 2003	17 Mar 2003
Apple Computer Inc.	Not Affected	-	17 Mar 2003
Fujitsu	Not Affected	-	17 Mar 2003
Hewlett-Packard Company	Not Affected	-	17 Mar 2003
Ingrian Networks	Not Affected	-	17 Mar 2003
Microsoft Corporation	Not Affected	-	17 Mar 2003

If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group	Score	Vector
Base	N/A	N/A
Temporal	N/A	N/A
Environmental	N/A	N/A

References

• None

Credit

Thanks to Alan Cox for reporting this vulnerability and creating the initial fixes and to Al Viro for discovering the original flaw. We also thank Martin Schulze and Sebastian Kramer provided additional fixes to the patches.

This document was written by Jason A Rafail.

Other Information

• CVE IDs: Unknown
• Date Public: 28 Feb 2003
• Date First Published: 17 Mar 2003
• Date Last Updated: 03 Apr 2003
• Severity Metric: 5.03
• Document Revision: 4