Public bug reported: Binary package hint: tk8.4
References: DSA-1415-1 (http://www.debian.org/security/2007/dsa-1415) DSA-1416-1 (http://www.debian.org/security/2007/dsa-1416) Quoting: "It was discovered that Tk, a cross-platform graphical toolkit for Tcl performs insufficient input validation in the code used to load GIF images, which may lead to the execution of arbitrary code." ** Affects: tk8.3 (Ubuntu) Importance: Undecided Status: New ** Affects: tk8.4 (Ubuntu) Importance: Undecided Status: New ** Also affects: tk8.3 (Ubuntu) Importance: Undecided Status: New ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2007-5378 ** Visibility changed to: Public -- [tk8.4] [tk8.3] buffer overflow https://bugs.launchpad.net/bugs/172519 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs