Vulnerability in Gnome Gdk-pixbuf
CVE-2015-4491
Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote…
EPSS: 0.037 (88.2th percentile) — read the EPSS interpretation.
Affected products
- Gnome Gdk-pixbuf
- Google Chrome
- Linux Linux_kernel
- Mozilla Firefox — versions 38.0, 38.0.1, 38.0.5
- Oracle Solaris — versions 10, 11.3
- Canonical Ubuntu_linux — versions 12.04, 14.04, 15.04
- Fedoraproject Fedora — versions 21, 22
- Opensuse — versions 13.1, 13.2
- N/a — versions n/a
Weakness classification (CWE)
References
- security@mozilla.org (x_refsource_CONFIRM, Vendor Advisory)
- FEDORA-2015-14011 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
- DSA-3337 (vendor-advisory, x_refsource_DEBIAN)
- openSUSE-SU-2015:1500 (vendor-advisory, x_refsource_SUSE)
- SUSE-SU-2015:2081 (vendor-advisory, x_refsource_SUSE)
- security@mozilla.org (x_refsource_CONFIRM)
- USN-2712-1 (x_refsource_UBUNTU, vendor-advisory)
- openSUSE-SU-2015:1454 (vendor-advisory, x_refsource_SUSE)
- USN-2702-3 (x_refsource_UBUNTU, vendor-advisory)
- RHSA-2015:1682 (x_refsource_REDHAT, vendor-advisory)