CVE-2008-0553

EPSS 6.0%

libtk-img - buffer overflow

Published: 2/7/2008Modified: 4/28/2026

Description

Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.

Affected packages (5)

Debian/libtk-imgfrom 0, < 1:1.3-release-7
Debian/libtk-imgfrom 0, < 1:1.3-15etch2
Debian/libtk-imgfrom 0, < 1:1.3-release-6+lenny1
Debian/tk8.3from 0, < 8.3.5-4sarge1
Debian/tk8.4from 0, < 8.4.9-1sarge2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-0553