It looks like both CVE 2007-2413 and CVE 2007-2459 have been assigned to this.
The description in 2459 is inaccurate - there was certainly a bug in read_4bit_bmp(), but it could not be used to cause a buffer overflow - or none that I could see. -- Tony Imager maintainer -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
