CVE-2008-6079
EPSS 2.0%imlib2 - arbitrary code execution
Published: 2/6/2009Modified: 4/28/2026
Also known as:DEBIAN-CVE-2008-6079
Description
imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to "several heap and stack based buffer overflows - partly due to integer overflows."
Affected packages (2)
- Debian/imlib2from 0, < 1.4.2-1
- Debian/imlib2from 0, < 1.4.0-1.2+lenny1