FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gdk-pixbuf2 -- heap overflow and DoS

Affected packages
		gdk-pixbuf2	<	2.31.6

Details

VuXML ID	f5b8b670-465c-11e5-a49d-bcaec565249c
Discovery	2015-07-12
Entry	2015-08-19

Gustavo Grieco reports:

We found a heap overflow and a DoS in the gdk-pixbuf implementation triggered by the scaling of a malformed bmp.

[source]

References

CVE Name	CVE-2015-4491
URL	https://bugzilla.gnome.org/show_bug.cgi?id=752297

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.