Referenced CVEs:
CVE-2008-0554
Description:
===========================================================Ubuntu Security Notice USN-665-1 November 06, 2008netpbm-free vulnerabilityCVE-2008-0554===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 7.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: netpbm 2:10.0-10ubuntu1.1Ubuntu 7.10: netpbm 2:10.0-11ubuntu0.1In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:It was discovered that Netpbm could be made to overrun a buffer when loadingcertain images. If a user were tricked into opening a specially craftedGIF image, remote attackers could cause a denial of service or executearbitrary code with user privileges.
More...