Vulnerability CVE-2005-3178: Information

Description

Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations.

Severity: MEDIUM (5.1)

URL: https://nvd.nist.gov/vuln/detail/CVE-2005-3178

Published: Oct. 7, 2005

Modified: Oct. 19, 2018

Fixed packages

Package name	Branch	Fixed in version	Version from repository	Errata ID	Task #	State
xli	sisyphus	1.17.0-alt9	1.17.0-alt9	ALT-PU-2020-3103-1	260221	Fixed
xli	p10	1.17.0-alt9	1.17.0-alt9	ALT-PU-2020-3103-1	260221	Fixed
xli	p9	1.17.0-alt9	1.17.0-alt9	ALT-PU-2020-3109-1	260222	Fixed
xli	c10f1	1.17.0-alt9	1.17.0-alt9	ALT-PU-2020-3103-1	260221	Fixed
xli	p11	1.17.0-alt9	1.17.0-alt9	ALT-PU-2020-3103-1	260221	Fixed

References to Advisories, Solutions, and Tools

Hyperlink	Resource
DSA-858	Patch Vendor Advisory
DSA-859	Patch Vendor Advisory
17087	Vendor Advisory
RHSA-2005:802
GLSA-200510-26
15051
MDKSA-2005:192
1015072
17124
17369
SCOSA-2005.56
18050
SCOSA-2005.62
18170
17139
17140
17143
17206
17273
SUSE-SR:2005:024
17282
http://support.avaya.com/elmodocs2/security/ASA-2006-013.htm
18491
20051005 xloadimage buffer overflow.
oval:org.mitre.oval:def:10590
FLSA-2006:152923

Affected configurations:
1. Configuration 1
  cpe:2.3:a:xloadimage:xloadimage:*:*:*:*:*:*:*:*
  End including
  4.1
  cpe:2.3:a:xli:xli:*:*:*:*:*:*:*:*

Version: v24.5.3

Vulnerability CVE-2005-3178: Information

Description

Fixed packages

References to Advisories, Solutions, and Tools

Configuration 1