Vulnerability in Gnome Gdk-pixbuf
CVE-2015-7674
Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file…
EPSS: 0.010 (77.1th percentile) — read the EPSS interpretation.
Affected products
- Gnome Gdk-pixbuf
- Canonical Ubuntu_linux — versions 12.04, 14.04, 15.04
- Opensuse — versions 13.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM)
- openSUSE-SU-2016:1467 (vendor-advisory, x_refsource_SUSE)
- openSUSE-SU-2016:0897 (vendor-advisory, x_refsource_SUSE)
- cve@mitre.org (x_refsource_CONFIRM)
- [oss-security] 20151005 Re: CVE request: Heap overflow with a gif file in gdk-pixbuf < 2.32.1 (mailing-list, x_refsource_MLIST)
- 76955 (vdb-entry, x_refsource_BID)
- USN-2767-1 (x_refsource_UBUNTU, vendor-advisory, Patch)
- [oss-security] 20151001 CVE request: Heap overflow with a gif file in gdk-pixbuf < 2.32.1 (mailing-list, x_refsource_MLIST)
- [oss-security] 20151001 Re: CVE request: Heap overflow with a gif file in gdk-pixbuf < 2.32.1 (mailing-list, x_refsource_MLIST)
- DSA-3378 (vendor-advisory, x_refsource_DEBIAN)