Users login

Create an account »


Users login

Home » Security Advisories» Fedora » imlib2 1.4.9 updates

imlib2 1.4.9 updates

A new upstream update fixing several vulnerabilities. See the bug list for more information.

  • Vendor: Fedora
  • Vendor ID: FEDORA-2016-b4212484d5
  • Date: May 24, 2016

Fedora Update Notification
2016-05-23 19:57:05.958827

Name : imlib2
Product : Fedora 22
Version : 1.4.9
Release : 1.fc22
Summary : Image loading, saving, rendering, and manipulation library
Description :
Imlib 2 is a library that does image file loading and saving as well
as rendering, manipulation, arbitrary polygon support, etc. It does
ALL of these operations FAST. Imlib2 also tries to be highly
intelligent about doing them, so writing naive programs can be done
easily, without sacrificing speed. This is a complete rewrite over
the Imlib 1.x series. The architecture is more modular, simple, and

Update Information:

A new upstream update fixing several vulnerabilities. See the bug list for more
information. ---- Rebase to the new upstream bugfix-only version. Add security
fixes for the referenced bugs.

[ 1 ] Bug #1323616 - CVE-2016-3993 imlib2: off by one error in MergeUpdate
[ 2 ] Bug #1327477 - CVE-2016-4024 imlib2: integer overflow resulting in insufficient heap
[ 3 ] Bug #1323060 - CVE-2016-3994 imlib2: out of bound read in GIF loader
[ 4 ] Bug #1323080 - CVE-2011-5326 imlib2: divide by zero on 2x1 ellipse

This update can be installed with the "yum" update program. Use
su -c 'yum update imlib2' at the command line.
For more information, refer to "Managing Software with yum",
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
[email protected]

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.


Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »