CVE-2008-5262
DevIL 1.7.4 - Stack-Based Buffer Overflow in iGetHdrHeader Function
Title source: llmDescription
Multiple stack-based buffer overflows in the iGetHdrHeader function in src-IL/src/il_hdr.c in DevIL 1.7.4 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE file.
References (7)
Core 7
Core References
Vendor Advisory vendor-advisory
x_refsource_fedora
https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00845.html
Third Party Advisory x_refsource_misc
http://secunia.com/secunia_research/2008-59/
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33637
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33470
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33801
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33231
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2009/dsa-1717
Scores
EPSS
0.0315
EPSS Percentile
86.5%
Details
CWE
CWE-119
Status
published
Products (1)
devil/developers_image_library
1.7.4
Published
Jan 13, 2009
Tracked Since
Feb 18, 2026