Debian DSA-1743-1 : libtk-img - buffer overflows

medium Nessus Plugin ID 35932
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote Debian host is missing a security-related update.

Description

Two buffer overflows have been found in the GIF image parsing code of Tk, a cross-platform graphical toolkit, which could lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems :

- CVE-2007-5137 It was discovered that libtk-img is prone to a buffer overflow via specially crafted multi-frame interlaced GIF files.

- CVE-2007-5378 It was discovered that libtk-img is prone to a buffer overflow via specially crafted GIF files with certain subimage sizes.

Solution

Upgrade the libtk-img packages.

For the stable distribution (lenny), these problems have been fixed in version 1.3-release-7+lenny1.

For the oldstable distribution (etch), these problems have been fixed in version 1.3-15etch3.

See Also

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=519072

https://security-tracker.debian.org/tracker/CVE-2007-5137

https://security-tracker.debian.org/tracker/CVE-2007-5378

https://www.debian.org/security/2009/dsa-1743

Plugin Details

Severity: Medium

ID: 35932

File Name: debian_DSA-1743.nasl

Version: 1.14

Type: local

Agent: unix

Published: 3/17/2009

Updated: 1/4/2021

Dependencies: ssh_get_info.nasl

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5.9

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:libtk-img, cpe:/o:debian:debian_linux:4.0, cpe:/o:debian:debian_linux:5.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 3/17/2009

Reference Information

CVE: CVE-2007-5137, CVE-2007-5378

BID: 25826

DSA: 1743

CWE: 119