CVE-2008-0553

EPSS 6.0%

libtk-img - buffer overflow

發布日:2008/2/7修改日:2026/4/28

描述

Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.

受影響套件(5)

Debian/libtk-imgfrom 0, < 1:1.3-release-7
Debian/libtk-imgfrom 0, < 1:1.3-15etch2
Debian/libtk-imgfrom 0, < 1:1.3-release-6+lenny1
Debian/tk8.3from 0, < 8.3.5-4sarge1
Debian/tk8.4from 0, < 8.4.9-1sarge2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-0553