Multiple Netpbm Buffer Overflow Vulnerabilities

Multiple Netpbm Buffer Overflow Vulnerabilities

Solution:
It has been reported that vendor-supplied patches are forthcoming.

Mandrake has released an advisory (MDKSA-2003:036) which addresses these issues. Please see the attached advisory for details on obtaining and applying fixes.

Netpbm Netpbm 9.14

Red Hat netpbm-9.24-9.72.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/netpbm-9.24-9.72.2.i386.rpm

Red Hat netpbm-9.24-9.72.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/netpbm-9.24-9.72.2.ia64.rpm

Red Hat netpbm-devel-9.24-9.72.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/netpbm-devel-9.24-9.72.2.i386. rpm

Red Hat netpbm-devel-9.24-9.72.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/netpbm-devel-9.24-9.72.2.ia64. rpm

Red Hat netpbm-progs-9.24-9.72.2.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/netpbm-progs-9.24-9.72.2.i386. rpm

Red Hat netpbm-progs-9.24-9.72.2.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/netpbm-progs-9.24-9.72.2.ia64. rpm

Netpbm Netpbm 9.20

Conectiva libnetpbm9-9.20-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/libnetpbm9-9.20-1U80_1cl.i3 86.rpm

Conectiva libnetpbm9-devel-9.20-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/libnetpbm9-devel-9.20-1U80_ 1cl.i386.rpm

Conectiva libnetpbm9-devel-static-9.20-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/libnetpbm9-devel-static-9.2 0-1U80_1cl.i386.rpm

Conectiva netpbm-9.20-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/netpbm-9.20-1U80_1cl.i386.r pm

Debian libnetpbm9-dev_9.20-8.2_alpha.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_alpha.deb

Debian libnetpbm9-dev_9.20-8.2_arm.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_arm.deb

Debian libnetpbm9-dev_9.20-8.2_hppa.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_hppa.deb

Debian libnetpbm9-dev_9.20-8.2_i386.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_i386.deb

Debian libnetpbm9-dev_9.20-8.2_ia64.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_ia64.deb

Debian libnetpbm9-dev_9.20-8.2_m68k.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_m68k.deb

Debian libnetpbm9-dev_9.20-8.2_mips.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_mips.deb

Debian libnetpbm9-dev_9.20-8.2_mipsel.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_mipsel.deb

Debian libnetpbm9-dev_9.20-8.2_powerpc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_powerpc.deb

Debian libnetpbm9-dev_9.20-8.2_s390.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_s390.deb

Debian libnetpbm9-dev_9.20-8.2_sparc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9- dev_9.20-8.2_sparc.deb

Debian libnetpbm9_9.20-8.2_alpha.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_alpha.deb

Debian libnetpbm9_9.20-8.2_arm.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_arm.deb

Debian libnetpbm9_9.20-8.2_hppa.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_hppa.deb

Debian libnetpbm9_9.20-8.2_i386.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_i386.deb

Debian libnetpbm9_9.20-8.2_ia64.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_ia64.deb

Debian libnetpbm9_9.20-8.2_m68k.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_m68k.deb

Debian libnetpbm9_9.20-8.2_mips.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_mips.deb

Debian libnetpbm9_9.20-8.2_mipsel.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_mipsel.deb

Debian libnetpbm9_9.20-8.2_powerpc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_powerpc.deb

Debian libnetpbm9_9.20-8.2_s390.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_s390.deb

Debian libnetpbm9_9.20-8.2_sparc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/libnetpbm9_ 9.20-8.2_sparc.deb

Debian netpbm_9.20-8.2_alpha.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_alpha.deb

Debian netpbm_9.20-8.2_arm.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_arm.deb

Debian netpbm_9.20-8.2_hppa.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_hppa.deb

Debian netpbm_9.20-8.2_i386.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_i386.deb

Debian netpbm_9.20-8.2_ia64.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_ia64.deb

Debian netpbm_9.20-8.2_m68k.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_m68k.deb

Debian netpbm_9.20-8.2_mips.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_mips.deb

Debian netpbm_9.20-8.2_mipsel.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_mipsel.deb

Debian netpbm_9.20-8.2_powerpc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_powerpc.deb

Debian netpbm_9.20-8.2_s390.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_s390.deb

Debian netpbm_9.20-8.2_sparc.deb
Debian GNU/Linux 3.0 (woody)
http://security.debian.org/pool/updates/main/n/netpbm-free/netpbm_9.20 -8.2_sparc.deb

Mandrake libnetpbm9-9.20-2.1mdk.i586.rpm
Mandrake Linux 8.2.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-9.20-2.1mdk.i586.rpm
Mandrake Multi Network Firewall 8.2.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-9.20-2.1mdk.ppc.rpm
Mandrake Linux 8.2/PPC.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.20-2.1mdk.i586.rpm
Mandrake Linux 8.2.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.20-2.1mdk.ppc.rpm
Mandrake Linux 8.2/PPC.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.20-2.1mdk.i586.rpm
Mandrake Linux 8.2.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.20-2.1mdk.i586.rpm
Mandrake Multi Network Firewall 8.2.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.20-2.1mdk.ppc.rpm
Mandrake Linux 8.2/PPC.
http://www.mandrakesecure.net/en/ftp.php

Netpbm Netpbm 9.24

Mandrake libnetpbm9-9.24-4.1mdk.i586.rpm
Mandrake Corporate Server 2.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.0.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-9.24-4.1mdk.ppc.rpm
Mandrake Linux 9.1/PPC.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.24-4.1mdk.i586.rpm
Mandrake Corporate Server 2.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.0.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-devel-9.24-4.1mdk.ppc.rpm
Mandrake Linux 9.1/PPC.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-static-devel-9.24-4.1mdk.i586.rpm
Mandrake Corporate Server 2.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-static-devel-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.0.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-static-devel-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake libnetpbm9-static-devel-9.24-4.1mdk.ppc.rpm
Mandrake Linux 9.1/PPC.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.24-4.1mdk.i586.rpm
Mandrake Corporate Server 2.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.0.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.24-4.1mdk.i586.rpm
Mandrake Linux 9.1.
http://www.mandrakesecure.net/en/ftp.php

Mandrake netpbm-9.24-4.1mdk.ppc.rpm
Mandrake Linux 9.1/PPC.
http://www.mandrakesecure.net/en/ftp.php

Red Hat netpbm-9.24-9.73.2.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/netpbm-9.24-9.73.2.i386.rpm

Red Hat netpbm-9.24-9.80.2.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/netpbm-9.24-9.80.2.i386.rpm

Red Hat netpbm-devel-9.24-9.73.2.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/netpbm-devel-9.24-9.73.2.i386. rpm

Red Hat netpbm-devel-9.24-9.80.2.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/netpbm-devel-9.24-9.80.2.i386. rpm

Red Hat netpbm-progs-9.24-9.73.2.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/netpbm-progs-9.24-9.73.2.i386. rpm

Red Hat netpbm-progs-9.24-9.80.2.i386.rpm
ftp://updates.redhat.com/8.0/en/os/i386/netpbm-progs-9.24-9.80.2.i386. rpm

Sun netpbm-9.24-9.72.2.i386.rpm
ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/RPM S/netpbm-9.24-9.72.2.i386.rpm

Sun netpbm-devel-9.24-9.72.2.i386.rpm
ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/RPM S/netpbm-devel-9.24-9.72.2.i386.rpm

Sun netpbm-progs-9.24-9.72.2.i386.rpm
ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/RPM S/netpbm-progs-9.24-9.72.2.i386.rpm

Netpbm Netpbm 9.5

Red Hat netpbm-9.24-9.70.2.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/netpbm-9.24-9.70.2.i386.rpm

Red Hat netpbm-devel-9.24-9.70.2.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/netpbm-devel-9.24-9.70.2.i386. rpm

Red Hat netpbm-progs-9.24-9.70.2.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/netpbm-progs-9.24-9.70.2.i386. rpm

Netpbm Netpbm 9.9

Red Hat netpbm-9.24-9.71.2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/netpbm-9.24-9.71.2.i386.rpm

Red Hat netpbm-devel-9.24-9.71.2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/netpbm-devel-9.24-9.71.2.i386. rpm

Red Hat netpbm-progs-9.24-9.71.2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/netpbm-progs-9.24-9.71.2.i386. rpm