Description
Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817.
References (8)
Core 8
Core References
Product x_refsource_misc
http://cvs.sourceforge.net/viewcvs.py/enlightenment/e17/libs/imlib2/ChangeLog?rev=1.20&view=markup
Vendor Advisory x_refsource_confirm
http://www.vuxml.org/freebsd/ba005226-fb5b-11d8-9837-000c41e2cdad.html
Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201611-1
Patch vendor-advisory
x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000870
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17183
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11084
Various Sources vendor-advisory
x_refsource_mandrake
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:089
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200409-12.xml
Scores
EPSS
0.0629
EPSS Percentile
91.0%
Details
Status
published
Products (40)
conectiva/linux
9.0
conectiva/linux
10.0
enlightenment/imlib
1.9
enlightenment/imlib
1.9.1
enlightenment/imlib
1.9.2
enlightenment/imlib
1.9.3
enlightenment/imlib
1.9.4
enlightenment/imlib
1.9.5
enlightenment/imlib
1.9.6
enlightenment/imlib
1.9.7
... and 30 more
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026