You are here

CVE-2005-0605

Vincent (CVE) Danen's picture
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

Details Source

Mitre

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Public Date

2005-03-01 00:00:00

Impact

Moderate

Bugzilla

CVE-2005-0605 libxpm buffer overflow

Bugzilla ID

430 520

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 RHSA-2005:198 2005-06-08
Red Hat Enterprise Linux 2.1 (openmotif) RHSA-2005:412 2005-05-11
Red Hat Enterprise Linux 4 RHSA-2005:412 2005-05-11
Red Hat Satellite 5.0 (RHEL v.4 AS) RHSA-2008:0261 2008-05-20
Red Hat Enterprise Linux 2.1 RHSA-2005:044 2005-04-06
Red Hat Enterprise Linux 3 (XFree86) RHSA-2005:331 2005-03-30
Red Hat Satellite v 4.2 (RHEL v.4 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite v 4.2 (RHEL v.3 AS) RHSA-2008:0524 2008-06-30
Red Hat Enterprise Linux 3 RHSA-2005:412 2005-05-11
Red Hat Enterprise Linux 2.1 RHSA-2005:473 2005-05-24

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 4 openmotif21 2.1.30-11.RHEL4.4 Fixed
Red Hat Enterprise Linux version 4 fonts-xorg 6.8.1.1-1.EL.1 Fixed
Red Hat Enterprise Linux version 4 openmotif 2.2.3-9.RHEL4.1 Fixed
Red Hat Enterprise Linux version 4 xorg-x11 6.8.2-1.EL.13.6 Fixed
Red Hat Enterprise Linux version 3 openmotif 2.2.3-5.RHEL3.2 Fixed
Red Hat Enterprise Linux version 3 openmotif21 2.1.30-9.RHEL3.6 Fixed