CVE-2008-0544

Description

Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information.

How to fix CVE-2008-0544

To remediate CVE-2008-0544, upgrade the affected package to a fixed version below.

• Debian/sdl-image1.2—upgrade to 1.2.6-3 or later

Is CVE-2008-0544 being exploited?

Moderate — EPSS is 8.7%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.2.6-3

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2008-0544