Pardus: DevIL: Multiple Buffer Overflows
Posted by Benjamin D. Thomas   
The vulnerabilities are caused due to boundary errors within the "iGetHdrHeader()" function in src-IL/src/il_hdr.c. These can be exploited to cause a stack-based buffer overflow when processing specially crafted Radiance RGBE files.

------------------------------------------------------------------------
Pardus Linux Security Advisory 2009-11            security@pardus.org.tr
------------------------------------------------------------------------
      Date: 2009-01-23
  Severity: 3
      Type: Remote
------------------------------------------------------------------------

Summary
=======

The vulnerabilities are  caused  due  to  boundary  errors  within  the 
"iGetHdrHeader()"  function in  src-IL/src/il_hdr.c.  These   can   be  
exploited  to cause  a  stack-based  buffer  overflow  when  processing 
specially crafted Radiance RGBE files. 


Description
===========

Successful exploitation allows the execution of arbitrary code. 



Affected packages:

  Pardus 2008:
    DevIL, all before 1.7.5-7-5


Resolution
==========

There are update(s) for DevIL. You can update them via Package  Manager 
or with a single command from console: 

    pisi up DevIL

References
==========

  * http://bugs.pardus.org.tr/show_bug.cgi?id=9061
  * http://secunia.com/secunia_research/2008-59
  * http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5262