xv is an image manipulation utility for the X Window System. xv is reported prone to multiple buffer overflow and integer overflow vulnerabilities. The following issues are reported: A stack based buffer overflow exists in the 'xvbmp.c' source file. It is reported that a user-supplied value is employed to iterate a loop that copies data into a finite stack based buffer. Multiple heap overflow vulnerabilities are reported to exist in the 'xviris.c' source file. The vulnerabilities are reported to exist due to integer handling problems. It is reported that an attacker may supply an integer value that is employed as a value during heap based memory allocation; this value may cause the allocation of an insufficient chunk of memory. A heap overflow vulnerability is reported to exist in the 'xvpcx.c' source file. The vulnerability is reported to exist due to integer handling problems. It is reported that an attacker may supply an integer value that is employed as a value during heap...
xv is an image manipulation utility for the X Window System. xv is reported prone to multiple buffer overflow and integer overflow vulnerabilities. The following issues are reported: A stack based buffer overflow exists in the 'xvbmp.c' source file. It is reported that a user-supplied value is employed to iterate a loop that copies data into a finite stack based buffer. Multiple heap overflow vulnerabilities are reported to exist in the 'xviris.c' source file. The vulnerabilities are reported to exist due to integer handling problems. It is reported that an attacker may supply an integer value that is employed as a value during heap based memory allocation; this value may cause the allocation of an insufficient chunk of memory. A heap overflow vulnerability is reported to exist in the 'xvpcx.c' source file. The vulnerability is reported to exist due to integer handling problems. It is reported that an attacker may supply an integer value that is employed as a value during heap based memory allocation; this value may cause the allocation of an insufficient chunk of memory. An additional heap overflow vulnerability is reported to exist in the 'xvpm.c' source file. The vulnerability is again reported to exist due to integer handling problems. It is reported that an attacker may supply an integer value that is employed as a value during heap based memory allocation; this value may cause the allocation of an insufficient chunk of memory.
