Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) ARGB (loader_argb.c), (2) PNG (loader_png.c), (3) LBM (loader_lbm.c), (4) JPEG (loader_jpeg.c), or (5) TIFF (loader_tiff.c) images.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Imlib2 | Enlightenment | 1.0 (including) | 1.0 (including) |
| Imlib2 | Enlightenment | 1.0.1 (including) | 1.0.1 (including) |
| Imlib2 | Enlightenment | 1.0.2 (including) | 1.0.2 (including) |
| Imlib2 | Enlightenment | 1.0.3 (including) | 1.0.3 (including) |
| Imlib2 | Enlightenment | 1.0.4 (including) | 1.0.4 (including) |
| Imlib2 | Enlightenment | 1.0.5 (including) | 1.0.5 (including) |
| Imlib2 | Enlightenment | 1.1 (including) | 1.1 (including) |
| Imlib2 | Enlightenment | 1.1.1 (including) | 1.1.1 (including) |
| Imlib2 | Enlightenment | 1.1.2 (including) | 1.1.2 (including) |
| Imlib2 | Enlightenment | 1.2.1 (including) | 1.2.1 (including) |
| Imlib2 | Enlightenment | 1.2.2 (including) | 1.2.2 (including) |
| Imlib2 | Enlightenment | 1.3 (including) | 1.3 (including) |