• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

XZGV Image Viewer JPEG File Remote Heap Buffer Overflow Vulnerability

Solution:
Gentoo has released an updated version of their advisory since the ebuild listed in the original advisory did not address all of the issues.

Please see the referenced advisories for information on obtaining and applying the appropriate updates.


xzgv Image Viewer 0.7

• Debian xzgv_0.7-6woody3_alpha.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_a lpha.deb


• Debian xzgv_0.7-6woody3_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_a rm.deb


• Debian xzgv_0.7-6woody3_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_h ppa.deb


• Debian xzgv_0.7-6woody3_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_i 386.deb


• Debian xzgv_0.7-6woody3_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_i a64.deb


• Debian xzgv_0.7-6woody3_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_m 68k.deb


• Debian xzgv_0.7-6woody3_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_m ips.deb


• Debian xzgv_0.7-6woody3_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_m ipsel.deb


• Debian xzgv_0.7-6woody3_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_p owerpc.deb


• Debian xzgv_0.7-6woody3_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_s 390.deb


• Debian xzgv_0.7-6woody3_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.7-6woody3_s parc.deb

xzgv Image Viewer 0.8

• Debian xzgv_0.8-3sarge1_alpha.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_a lpha.deb


• Debian xzgv_0.8-3sarge1_amd64.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_a md64.deb


• Debian xzgv_0.8-3sarge1_arm.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_a rm.deb


• Debian xzgv_0.8-3sarge1_hppa.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_h ppa.deb


• Debian xzgv_0.8-3sarge1_i386.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_i 386.deb


• Debian xzgv_0.8-3sarge1_ia64.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_i a64.deb


• Debian xzgv_0.8-3sarge1_m68k.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_m 68k.deb


• Debian xzgv_0.8-3sarge1_mips.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_m ips.deb


• Debian xzgv_0.8-3sarge1_mipsel.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_m ipsel.deb


• Debian xzgv_0.8-3sarge1_powerpc.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_p owerpc.deb


• Debian xzgv_0.8-3sarge1_s390.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_s 390.deb


• Debian xzgv_0.8-3sarge1_sparc.deb
  Debian GNU/Linux 3.1 alias sarge
  http://security.debian.org/pool/updates/main/x/xzgv/xzgv_0.8-3sarge1_s parc.deb

zgv Image Viewer 5.5

• Debian zgv_5.5-3woody3_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/z/zgv/zgv_5.5-3woody3_i38 6.deb