FreeBSD : imlib2 -- BMP decoder buffer overflow (ba005226-fb5b-11d8-9837-000c41e2cdad)
Medium Nessus Plugin ID 36768
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionMarcus Meissner discovered that imlib2's BMP decoder would crash when loading the test BMP file created by Chris Evans for testing the previous Qt vulnerability. There appears to be both a stack-based and a heap-based buffer overflow that are believed to be exploitable for arbitrary code execution.
SolutionUpdate the affected package.