{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"<p>Les versions ant\u00e9rieures \u00e0 la 8.5.1.</p>","content":"## Description\n\nUne fonction de la biblioth\u00e8que Tcl/Tk vuln\u00e9rable \u00e0 un d\u00e9passement de\nm\u00e9moire permet \u00e0 un utilisateur malveillant d'ex\u00e9cuter du code\narbitraire \u00e0 distance \u00e0 l'aide d'une image sp\u00e9cifiquement r\u00e9alis\u00e9e.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2008-0553","url":"https://www.cve.org/CVERecord?id=CVE-2008-0553"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA 1490 du 10 f\u00e9vrier 2008 :","url":"http://www.debian.org/security/2008/dsa-1490"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora    2008-1122,2008-1131,2008-1323 et 2008-1384 7 f\u00e9vrier 2008 :","url":"http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00132.html"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora    2008-1122,2008-1131,2008-1323 et 2008-1384 7 f\u00e9vrier 2008 :","url":"http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00205.html"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2008:0134 du 21 f\u00e9vrier    2008 :","url":"http://rhn.redhat.com/errata/RHSA-2008-0134.html"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora    2008-1122,2008-1131,2008-1323 et 2008-1384 7 f\u00e9vrier 2008 :","url":"http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00193.html"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2008:0135 du 21 f\u00e9vrier    2008 :","url":"http://rhn.redhat.com/errata/RHSA-2008-0135.html"},{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora    2008-1122,2008-1131,2008-1323 et 2008-1384 7 f\u00e9vrier 2008 :","url":"http://www.redhat.com/archives/fedora-package-announce/2008-February/msg00115.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2008:041 du 07 f\u00e9vrier    2008 :","url":"http://www.mandriva.com/archives/security/advisories"},{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA 1491 du 10 f\u00e9vrier 2008 :","url":"http://www.debian.org/security/2008/dsa-1491"},{"title":"Bulletin de s\u00e9curit\u00e9 Sun Solaris #237465 du 06 mai 2008 :","url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-237465-1"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2008:0136 du 21 f\u00e9vrier    2008 :","url":"http://rhn.redhat.com/errata/RHSA-2008-0136.html"}],"reference":"CERTA-2008-AVI-240","revisions":[{"description":"version initiale.","revision_date":"2008-05-13T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 affectant la biblioth\u00e8que Tcl/Tk lors du traitement\ndes images au format GIF a \u00e9t\u00e9 corrig\u00e9e.\n","title":"Vuln\u00e9rabilit\u00e9 dans Tcl/Tk","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Sun 237465 du mardi 6 mai 2008","url":null}]}