Home » Hacking News » Netpbm multiple buffer overflows
Netpbm multiple buffer overflows
by Mario Miri on April 8th, 2003 Multiple buffer overflow vulnerabilities have been discovered in Netpbm. Some are due to incorrect management of files more than 2GB in length or signed integer overflows. This vulnerability is hard to exploit.
Vulnerable:
Netpbm 9.5
Netpbm 9.9
Netpbm 9.14
Netpbm 9.20
Netpbm 9.21
Netpbm 9.22
Netpbm 9.23
Netpbm 9.24
Netpbm 9.25
Netpbm 10.0
Netpbm 10.1
Netpbm 10.2
Netpbm 10.3
Netpbm 10.4
Netpbm 10.5
Netpbm 10.6
Netpbm 10.7
Netpbm 10.8
Netpbm 10.9
Netpbm 10.10
Netpbm 10.11
Netpbm 10.12
Netpbm 10.13
Netpbm 10.14
Solution:
Vendor supplied patches are in preparation. MandrakeSoft and RedHat software have released patches available from official sites.
Discovered by:
Al Viro