Package: libimager-perl Version: 0.44-1 Severity: important Tags: security We have found that libimager-perl, aka Imager, versions < 0.49_01, has a bug that can result in a Segmentation Fault if it operates on 4-channel JPEG images. If setting $picture to a blob containing a JPEG image with 4 channels, the problem should be reproducable:
use Imager; my $img = Imager->new(); $img->read(data=>$picture); warn "imager is saving.."; $img->write(data=>\$picture,type=>"jpeg"); warn "imager is done saving.."; We have worked with upstream developer Tony Cook, who has a fix ready. If the library is used to process images from remote sources, this problem can be exploited to perform a DoS attack, thus we have tagged the report security. Ole Kasper Olsen and Kjetil Kjernsmo Opera Software ASA -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-2-686 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages libimager-perl depends on: ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libfreetype6 2.1.7-2.4 FreeType 2 font engine, shared lib ii libjpeg62 6b-10 The Independent JPEG Group's JPEG ii libpng12-0 1.2.8rel-1 PNG library - runtime ii libt1-5 5.0.2-3 Type 1 font rasterizer library - r ii libtiff4 3.7.2-3 Tag Image File Format (TIFF) libra ii libungif4g 4.1.3-2sarge1 shared library for GIF images (run ii perl 5.8.4-8sarge3 Larry Wall's Practical Extraction ii perl-base [perlapi-5.8 5.8.4-8sarge3 The Pathologically Eclectic Rubbis ii zlib1g 1:1.2.2-4.sarge.2 compression library - runtime -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
