Note: This is an archival copy of Security Sun Alert 201677 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1001247.1.
Article ID : 1001247.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2004-12-05
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Security Vulnerabilities in libXpm May Allow a Remote Unprivileged User to Execute Arbitrary Code

Category
Security

Release Phase
Resolved

Product
Solaris 9 Operating System

Bug Id
5077952, 5105762, 5082323

Date of Workaround Release
15-OCT-2004

Date of Resolved Release
06-DEC-2004

Impact

Security vulnerabilities in the X Pixmap library (libXpm) may allow a remote unprivileged user the ability to execute arbitrary code with the privileges of a local user when that local user has loaded a X Pixmap (Xpm) format image file supplied by an untrusted user.

Note: The X Pixmap library (libXpm) is used to manipulate and display small images in X windowing systems.

These issues are described in the following documents:


Contributing Factors

These issues can occur in the following releases:

SPARC Platform

  • Solaris 9 without patch 118300-01

x86 Platform

  • Solaris 9 without patch 118301-01

Linux

  • Sun Java Desktop System (JDS) 2003 without the updated RPMs (patch-9367)
  • Sun Java Desktop System (JDS) Release 2 without the updated RPMs (patch-9367)

Note: Solaris 8 and earlier versions of Solaris are not affected by the described issues.

These issues only occur on JDS Linux systems with libXpm versions XFree86-libs-4.3.0-123 or earlier.

To determine the release of JDS for Linux installed on a system, the following command can be run: 

    % cat /etc/sun-release
Sun Java Desktop System, Release 2 -build 10b (GA)
Assembled 30 March 2004

To determine the version of libXpm, the following command can be run: 

    % rpm -qf /usr/X11R6/lib/libXpm.so.4.11
XFree86-libs-4.3.0-123

Symptoms

There are no predictable symptoms that would indicate the described issues have been exploited.


Workaround

There is no workaround. Please see the "Resolution" section below.


Resolution

This issue is addressed in the following releases:

SPARC Platform

  • Solaris 9 with patch 118300-01 or later

x86 Platform

  • Solaris 9 with patch 118301-01 or later

Linux

  • Sun Java Desktop System (JDS) 2003 with the updated RPMs (patch-9367)
  • Sun Java Desktop System (JDS) Release 2 with the updated RPMs (patch-9367)

To download and install the updated RPMs from the update servers select the following from the launch bar: 

    Launch >> Applications >> System Tools >> Online Update

For more information on obtaining updates see:



Modification History
Date: 18-OCT-2004
  • Added BugID 5082323 to the "BugIDs" field

Date: 06-DEC-2004
  • State: Resolved
  • Updated Contributing Factors and Resolution sections


References

118300-01
118301-01




Attachments
This solution has no attachment