WindowMaker Image Handling Buffer Overflow Vulnerability
Mandrake has released an advisory, MDKSA-2002:085, containing fixes. Information about obtaining and applying fixes can be found in the referenced advisory.
Red Hat has released advisory RHSA-2003:043-14 with fixes to address this issue.
Sun Microsystems has released a fix for Sun Linux 5.0.6.
Red Hat has released advisory RHSA-2003:009-09 to address this issue in their Linux Enterprise software. Relevant patches are available through the Red Hat Network. See the referenced advisory for additional details.
SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS.
Patch 10027 can be obtained via the following link:
For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory.
Debian and Conectiva have released fixes:
Windowmaker Windowmaker 0.61.1
Windowmaker Windowmaker 0.62.1
Windowmaker Windowmaker 0.64
Windowmaker Windowmaker 0.65.1
Windowmaker Windowmaker 0.80