Vulnerability CVE-2011-2896: Information

Description

The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte function in img/gifread.c in XPCE in SWI-Prolog 5.10.4 and earlier, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows remote attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2895.

Severity: MEDIUM (5.1)

URL: https://nvd.nist.gov/vuln/detail/CVE-2011-2896
Published: Aug. 19, 2011
Modified: Feb. 7, 2022
Error type identifier: CWE-787

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
swi-prologsisyphus7.4.2-alt1_29.0.4-alt4ALT-PU-2018-1360-1201301Fixed
swi-prologp107.4.2-alt1_28.2.1-alt1.1ALT-PU-2018-1360-1201301Fixed
swi-prologp97.4.2-alt1_27.4.2-alt2_3.1ALT-PU-2018-1360-1201301Fixed
swi-prologc10f17.4.2-alt1_28.2.1-alt1.1ALT-PU-2018-1360-1201301Fixed
swi-prologc9f27.4.2-alt1_27.4.2-alt2_3.1ALT-PU-2018-1360-1201301Fixed
swi-prologp117.4.2-alt1_29.0.4-alt3ALT-PU-2018-1360-1201301Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugzilla.redhat.com/show_bug.cgi?id=727800
  • Issue Tracking
  • Patch
  • Third Party Advisory
http://git.gnome.org/browse/gimp/commit/?id=376ad788c1a1c31d40f18494889c383f6909ebfc
  • Patch
  • Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=730338
  • Issue Tracking
  • Third Party Advisory
http://cups.org/str.php?L3867
  • Patch
  • Third Party Advisory
45621
  • Broken Link
[oss-security] 20110810 LZW decompression issues
  • Mailing List
  • Patch
  • Third Party Advisory
USN-1207-1
  • Third Party Advisory
FEDORA-2011-11305
  • Third Party Advisory
FEDORA-2011-11221
  • Third Party Advisory
46024
  • Broken Link
FEDORA-2011-11229
  • Third Party Advisory
1025929
  • Broken Link
  • Third Party Advisory
  • VDB Entry
FEDORA-2011-11173
  • Third Party Advisory
FEDORA-2011-11197
  • Third Party Advisory
45945
  • Broken Link
FEDORA-2011-11318
  • Third Party Advisory
45948
  • Broken Link
49148
  • Broken Link
  • Third Party Advisory
  • VDB Entry
http://www.swi-prolog.org/bugzilla/show_bug.cgi?id=7#c4
  • Issue Tracking
  • Third Party Advisory
45900
  • Broken Link
USN-1214-1
  • Third Party Advisory
MDVSA-2011:146
  • Broken Link
RHSA-2011:1635
  • Broken Link
MDVSA-2011:167
  • Broken Link
RHSA-2012:1180
  • Third Party Advisory
RHSA-2012:1181
  • Third Party Advisory
50737
  • Broken Link
GLSA-201209-23
  • Third Party Advisory
DSA-2354
  • Third Party Advisory
48236
  • Broken Link
48308
  • Broken Link
DSA-2426
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:swi-prolog:swi-prolog:*:*:*:*:*:*:*:*
      End including
      5.10.4

      Configuration 2

      cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*
      End including
      1.4.6

      Configuration 3

      cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
      End including
      2.6.11
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top