CVE-2007-5503 - CVE Reference - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

CVE Reference: CVE-2007-5503

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5503

Description: Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38771 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-550-2 http://www.ubuntulinux.org/support/documentation/usn/usn-550-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html ST 1019027 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.362119 SAID Secunia Advisory: SA27985 Secunia Advisory: SA27887 Secunia Advisory: SA27775 Secunia Advisory: SA27819 Secunia Advisory: SA28289 Secunia Advisory: SA28476 Secunia Advisory: SA28529 Secunia Advisory: SA28555 Secunia Advisory: SA28838 Secunia Advisory: SA27880 Secunia Advisory: SA29767 REDHAT http://rhn.redhat.com/errata/RHSA-2007-1078.html MISC http://bugs.gentoo.org/show_bug.cgi?id=201860 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:019 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200712-24.xml http://security.gentoo.org/glsa/glsa-200712-04.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1542 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=200350 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0015 http://gitweb.freedesktop.org/?p=cairo;a=commitdiff_plain;h=6020f67f1a49cfe3844c4938d4af24c63c8424cc;hp=c79fc9af334fd6f2d1078071d64178125561b187 http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=e49bcde27f88e21d5b8037a0089a226096f6514b http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=5c7d2d14d78e4dfb1ef6d2c40f0910f177e07360 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/486405/100/0/threaded BID 26650

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Mozilla Firefox Multiple Vulnerabilities

2.	Opera for Windows Unspecified Code Execution

3.	VLC Media Player WAV Processing Integer Overflow

4.	zlib Denial of Service Vulnerability

5.	Mozilla Thunderbird Multiple Vulnerabilities

6.	PCRE pcre_compile.c Buffer Overflow Vulnerability

7.	UnixWare ReliantHA Privilege Escalation Vulnerabilities

8.	Opera Canvas Functions Information Disclosure

9.	GNOME Glib PCRE pcre_compile.c Buffer Overflow Vulnerability

10.	Fedora update for glib2