Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#10638 - imlib2 security update
Attached to Project:
Arch Linux
Opened by Ionut Biru (wonder) - Wednesday, 11 June 2008, 16:47 GMT
Last edited by Eric Belanger (Snowman) - Sunday, 15 June 2008, 20:18 GMT
Opened by Ionut Biru (wonder) - Wednesday, 11 June 2008, 16:47 GMT
Last edited by Eric Belanger (Snowman) - Sunday, 15 June 2008, 20:18 GMT
|
DetailsDescription:
Imlib2 1.4.1 has been released to address security vulnerabilities in the PNM and XPM image loaders which can be exploited to cause applications linked against Imlib2 to execute arbitrary code with the privileges of the user running the application (or root, if the application is setuid/setgid). All users are encouraged to upgrade to this latest release immediately. Additional info: * package version(s) * config and/or log files etc. imlib2 1.4.0-1 Steps to reproduce: |
This task depends upon
Closed by Eric Belanger (Snowman)
Sunday, 15 June 2008, 20:18 GMT
Reason for closing: Fixed
Additional comments about closing: imlib2-1.4.1-1 is now in [extra]
Sunday, 15 June 2008, 20:18 GMT
Reason for closing: Fixed
Additional comments about closing: imlib2-1.4.1-1 is now in [extra]