Bug#303141: CAN-2005-0891: Palette-less BMPs can cause double free() DoS

[Loïc Minier]

tags 303141 + sid sarge
thanks

        Hi,

On mar, avr 05, 2005, Moritz Muehlenhoff wrote:
> 
> [ Dear security team: You can test whether Woody is affected by loading=
 this
>   image into gqview; if it causes a lockup it's affected as well:
>   http://bugzilla.gnome.org/attachment.cgi?id=39270&action=view ]

 I have launched a gqview instance within a woody pbuilder instance, and
 it displayed its "?" image for unknown files.  Gqview in sid hanged
 with 100% CPU usage.

   Regards,
-- 
Loïc Minier <lool@dooz.org>
"Neutral President: I have no strong feelings one way or the other."