Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
BID:17415
Info
Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
| Bugtraq ID: | 17415 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2006-0053 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 07 2006 12:00AM |
| Updated: | Apr 10 2006 06:42PM |
| Credit: | Kjetil Kjernsmo <[email protected]> is credited with the discovery of this vulnerability. |
| Vulnerable: |
Tony Cook Imager 0.49 Tony Cook Imager 0.48 Tony Cook Imager 0.47 Tony Cook Imager 0.45 Tony Cook Imager 0.43 Tony Cook Imager 0.42 Tony Cook Imager 0.41 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 |
| Not Vulnerable: |
Tony Cook Imager 0.50 |
Discussion
Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
The Perl Imager module is susceptible to a denial-of-service vulnerability. This issue is due to a failure of the software to properly handle unexpected image data.
Malformed image files may cause a crash in applications that use the affected Perl module, resulting in a denial-of-service condition.
The Perl Imager module is susceptible to a denial-of-service vulnerability. This issue is due to a failure of the software to properly handle unexpected image data.
Malformed image files may cause a crash in applications that use the affected Perl module, resulting in a denial-of-service condition.
Exploit / POC
Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
An attacker uses standard image-creation utilities to create images sufficient to exploit this issue.
Sample Perl code sufficient to demonstrate this issue is available:
perl -MImager -e 'my $im = Imager->new(xsize => 100, ysize=>100, channels => 4); $im->write(data=>\$foo, type=>"jpeg")'
An attacker uses standard image-creation utilities to create images sufficient to exploit this issue.
Sample Perl code sufficient to demonstrate this issue is available:
perl -MImager -e 'my $im = Imager->new(xsize => 100, ysize=>100, channels => 4); $im->write(data=>\$foo, type=>"jpeg")'
Solution / Fix
Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
Solution:
Version 0.50 of Imager is available to address this issue.
Please see the referenced vendor advisories for further information on obtaining and applying fixes.
Tony Cook Imager 0.48
Tony Cook Imager 0.43
Tony Cook Imager 0.42
Tony Cook Imager 0.45
Tony Cook Imager 0.41
Tony Cook Imager 0.47
Solution:
Version 0.50 of Imager is available to address this issue.
Please see the referenced vendor advisories for further information on obtaining and applying fixes.
Tony Cook Imager 0.48
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
Tony Cook Imager 0.43
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
Tony Cook Imager 0.42
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
Tony Cook Imager 0.45
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
Tony Cook Imager 0.41
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
Tony Cook Imager 0.47
-
Tony Cook Imager-0.50.tar.gz
http://search.cpan.org/CPAN/authors/id/T/TO/TONYC/Imager-0.50.tar.gz
References
Tony Cook Imager JPEG and TGA Images Denial Of Service Vulnerability
References:
References:
- #18397: writing a 2 or 4 channel jpeg to a scalar causes a segmentation fault (CPAN)
- Debian Bug report logs - #359661 (Debian)
- Imager CPAN Page (Tony Cook)
- Imager Home Page (Tony Cook)