Note:
This project will be discontinued after December 13, 2021. [more]
2018-01-02
Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corruption and potential code execution
Products | Ubuntu_linux, Debian_linux, Gdk\-Pixbuf |
Type | Integer Overflow or Wraparound (CWE-190) |
First patch | - None (likely due to unavailable code) |
Links |
• https://bugzilla.gnome.org/show_bug.cgi?id=785973
• https://usn.ubuntu.com/3532-1/ • https://lists.debian.org/debian-lts-announce/2018/01/msg00007.html • https://www.debian.org/security/2018/dsa-4088 • https://security.gentoo.org/glsa/201804-14 |