CVE-2007-5378

Name	CVE-2007-5378
Description	Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1415-1, DSA-1416-1, DSA-1743-1
Debian Bugs	446465

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
libtk-img (PTS)	bullseye	1:1.4.13+dfsg-1	fixed
	bookworm	1:1.4.14+dfsg-2	fixed
	sid, trixie	1:2.0.0+dfsg1-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
libtk-img	source	etch	1:1.3-15etch3		DSA-1743-1
libtk-img	source	lenny	1:1.3-release-7+lenny1		DSA-1743-1
libtk-img	source	(unstable)	1.3-release-8	medium
tk8.3	source	etch	8.3.5-6etch1		DSA-1416-1
tk8.3	source	(unstable)	8.3.5-10	medium		446465
tk8.4	source	sarge	8.4.9-1sarge1		DSA-1415-1
tk8.4	source	etch	8.4.12-1etch1		DSA-1415-1
tk8.4	source	(unstable)	8.4.16-1	medium