FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  512420
Date:      2019-09-20
Time:      15:56:44Z
Committer: pi

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
b1bcab7d-1880-11dd-a914-0016179b2dd5sdl_image -- buffer overflow vulnerabilities

Secunia reports:

Two vulnerabilities have been reported in SDL_image, which can be exploited by malicious people to cause a Denial of Service or potentially compromise an application using the library.

A boundary error within the LWZReadByte() function in IMG_gif.c can be exploited to trigger the overflow of a static buffer via a specially crafted GIF file.

A boundary error within the "IMG_LoadLBM_RW()" function in IMG_lbm.c can be exploited to cause a heap-based buffer overflow via a specially crafted IFF ILBM file.


Discovery 2008-01-24
Entry 2008-05-02
sdl_image
lt 1.2.6_1

CVE-2007-6697
CVE-2008-0544
http://secunia.com/advisories/28640