Vulnerability Note VU#882750
libXpm image library vulnerable to buffer overflow
libXpm image parsing code contains a buffer overflow vulnerability that may allow an attacker to cause a denial-of-service condition or execute arbitrary code.
X PixMap (XPM) is a format for encoding and decoding images on the X Windows System 11 (X11). libXpm is a library of functions used to manipulate XPM images. There is a stack-based buffer overflow vulnerability in the xpmParseColors() function. This function is used to decode color information stored within a XPM image. Malicious users may be able to exploit this vulnerability by supplying the xpmParseColors() function with a specially crafted XPM image file. Applications that receive input from remote sources may be remotely exploitable.
Any program that uses the libXpm library may be affected by this issue. Users are encouraged to contact their vendors to determine if they are vulnerable.
Specific impacts depend on the application being attacked. Potential consequences range from abrupt and abnormal program termination to the execution of arbitrary code with the privileges of the compromised program.
Several vendors of relevant or derived implementations have released patches to address this vulnerability; please contact those vendors for further details.
This issue has been corrected in X11 version 6.8.1.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Debian||Affected||23 Sep 2004||11 Oct 2004|
|FreeBSD||Affected||23 Sep 2004||11 Oct 2004|
|SuSE Inc.||Affected||23 Sep 2004||30 Sep 2004|
|Apple Computer Inc.||Unknown||23 Sep 2004||11 Oct 2004|
|BSDI||Unknown||-||11 Oct 2004|
|Conectiva||Unknown||-||11 Oct 2004|
|Cray Inc.||Unknown||23 Sep 2004||11 Oct 2004|
|eMC Corporation||Unknown||-||11 Oct 2004|
|Engarde||Unknown||-||11 Oct 2004|
|F5 Networks||Unknown||-||30 Sep 2004|
|Fujitsu||Unknown||-||11 Oct 2004|
|Gentoo||Unknown||-||11 Oct 2004|
|Hewlett-Packard Company||Unknown||-||11 Oct 2004|
|Hitachi||Unknown||-||11 Oct 2004|
|IBM||Unknown||-||11 Oct 2004|
CVSS Metrics (Learn More)
Thanks to Chris Evans for reporting this vulnerability.
This document was written by Jeff Gennari.
- CVE IDs: CAN-2004-0687
- Date Public: 16 Sep 2004
- Date First Published: 30 Sep 2004
- Date Last Updated: 12 May 2005
- Severity Metric: 5.07
- Document Revision: 94
If you have feedback, comments, or additional information about this vulnerability, please send us email.