Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-7674

Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file, which triggers a heap-based buffer overflow.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2015100...
MLIST: [oss-security] 2015100...
MLIST: [oss-security] 2015100...
MLIST: [oss-security] 2015100...
CONFIRM: http://ftp.gnome.org/p...
CONFIRM: https://git.gnome.org/...
UBUNTU: USN-2767-1
SUSE: openSUSE-SU-2016:0897
BID: 76955
SUSE: openSUSE-SU-2016:1467
GENTOO: GLSA-201512-05
DEBIAN: DSA-3378

Launchpad.net

CVE 2015-7674

Related bugs

References