CVE-2006-4806

Upstream information

CVE-2006-4806 at MITRE

Description

Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) ARGB (loader_argb.c), (2) PNG (loader_png.c), (3) LBM (loader_lbm.c), (4) JPEG (loader_jpeg.c), or (5) TIFF (loader_tiff.c) images.

---

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores

CVSS detail	National Vulnerability Database
Base Score	5.1
Vector	AV:N/AC:H/Au:N/C:P/I:P/A:P
Access Vector	Network
Access Complexity	High
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	Partial
Availability Impact	Partial

SUSE Bugzilla entry: 214313 [RESOLVED / FIXED]

SUSE Security Advisories:

• SUSE-SR:2006:026, published Fri, 17 Nov 2006 15:00:00 +0000

---

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 05:12:09 2013
CVE page last modified: Mon Oct 6 18:14:48 2025