Support / Security / Advisories / Mandrakelinux 10.0 / MDKSA-2004:137-1

Package name: libxpm4
Date: 2004-11-29
Advisory ID: MDKSA-2004:137-1
Affected versions: 9.2 amd64 , CS2.1 x86_64 , 10.0 amd64 , 10.1 i586 , 10.0 i586 , 9.2 i586 , CS2.1 i586 , 10.1 x86_64

Problem description

The XPM library which is part of the XFree86/XOrg project is used by several GUI applications to process XPM image files. A source code review of the XPM library, done by Thomas Biege of the SuSE Security-Team revealed several different kinds of bugs. These bugs include integer overflows, out-of-bounds memory access, shell command execution, path traversal, and endless loops. These bugs can be exploited by remote and/or local attackers to gain access to the system or to escalate their local privileges, by using a specially crafted xpm image. Update: The previous libxpm4 update had a linking error that resulted in a missing s_popen symbol error running applications dependant on the library. In addition, the file path checking in the security updates prevented some applications, like gimp-2.0 from being able to save xpm format images. Updated packages are patched to correct all these issues.

Updated packages

9.2 amd64

 47b3147cf8ca6fc1fae0d267569b6a15  amd64/9.2/RPMS/lib64xpm4-3.4k-27.3.92mdk.amd64.rpm
09e3d45094730c2da539437922abb2b6  amd64/9.2/RPMS/lib64xpm4-devel-3.4k-27.3.92mdk.amd64.rpm
7d53ee8024d4d586ec50ba0281987fd4  amd64/9.2/SRPMS/xpm-3.4k-27.3.92mdk.src.rpm

CS2.1 x86_64

 adc64096557a3934aad0d149918efdae  x86_64/corporate/2.1/RPMS/libxpm4-3.4k-21.3.C21mdk.x86_64.rpm
1a2ab77f1754f1a60781d1e2a8306c47  x86_64/corporate/2.1/RPMS/libxpm4-devel-3.4k-21.3.C21mdk.x86_64.rpm
873a7591285599bdb062d1c26eca3f72  x86_64/corporate/2.1/SRPMS/xpm-3.4k-21.3.C21mdk.src.rpm

10.0 amd64

 0df2d07d04793600e2ede34733c18700  amd64/10.0/RPMS/lib64xpm4-3.4k-27.3.100mdk.amd64.rpm
c699a6fa6400dd3dfd803b129392b398  amd64/10.0/RPMS/lib64xpm4-devel-3.4k-27.3.100mdk.amd64.rpm
d673354abbc067dbc454481e11c0e110  amd64/10.0/SRPMS/xpm-3.4k-27.3.100mdk.src.rpm

10.1 i586

 e00bdfcecbf0d09dc6758a2dbce6dc9b  10.1/RPMS/libxpm4-3.4k-28.2.101mdk.i586.rpm
6eb66944f25e92ca7d3d7f76cfa6b577  10.1/RPMS/libxpm4-devel-3.4k-28.2.101mdk.i586.rpm
562eaedc47c52d4952d27b023bcd49f2  10.1/SRPMS/xpm-3.4k-28.2.101mdk.src.rpm

10.0 i586

 35c897c12a36e38cceb1774f890e91e9  10.0/RPMS/libxpm4-3.4k-27.3.100mdk.i586.rpm
ff399d6be76862ac2b61ca5bab76941a  10.0/RPMS/libxpm4-devel-3.4k-27.3.100mdk.i586.rpm
d673354abbc067dbc454481e11c0e110  10.0/SRPMS/xpm-3.4k-27.3.100mdk.src.rpm

9.2 i586

 a7c7c5441b22e690f9be0258db581052  9.2/RPMS/libxpm4-3.4k-27.3.92mdk.i586.rpm
e950cdc935e75873a4f81a1cc5d6a812  9.2/RPMS/libxpm4-devel-3.4k-27.3.92mdk.i586.rpm
7d53ee8024d4d586ec50ba0281987fd4  9.2/SRPMS/xpm-3.4k-27.3.92mdk.src.rpm

CS2.1 i586

 a2910d380ebe04ca8ee624e218b7a9b7  corporate/2.1/RPMS/libxpm4-3.4k-21.3.C21mdk.i586.rpm
28d0c7868d8b3231751a3f1d97e47725  corporate/2.1/RPMS/libxpm4-devel-3.4k-21.3.C21mdk.i586.rpm
873a7591285599bdb062d1c26eca3f72  corporate/2.1/SRPMS/xpm-3.4k-21.3.C21mdk.src.rpm

10.1 x86_64

 3b17a7a58c7345520e63fad235a47a3f  x86_64/10.1/RPMS/lib64xpm4-3.4k-28.2.101mdk.x86_64.rpm
18a71ab6716293e66668bf627c24e2a8  x86_64/10.1/RPMS/lib64xpm4-devel-3.4k-28.2.101mdk.x86_64.rpm
562eaedc47c52d4952d27b023bcd49f2  x86_64/10.1/SRPMS/xpm-3.4k-28.2.101mdk.src.rpm