LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

gdk-pixbuf2: excessive memory use

Package(s):gdk-pixbuf2 CVE #(s):CVE-2011-2485
Created:June 27, 2011 Updated:March 15, 2013
Description: From the Fedora advisory:

It was found that gdk-pixbuf GIF image loader gdk_pixbuf__gif_image_load() routine did not properly handle certain return values from their subroutines. A remote attacker could provide a specially-crafted GIF image, which once opened in an application, linked against gdk-pixbuf would lead to gdk-pixbuf to return partially initialized pixbuf structure, possibly having huge width and height, leading to that particular application termination due excessive memory use.

Alerts:
Mandriva MDVSA-2011:132 2011-09-06
Fedora FEDORA-2011-8667 2011-06-24
Fedora FEDORA-2011-8917 2011-07-01
Fedora FEDORA-2011-8966 2011-07-01
Slackware SSA:2011-178-01 2011-06-28
Fedora FEDORA-2011-8672 2011-06-24
Gentoo 201206-11 2012-06-21
Gentoo 201206-20 2012-06-23
Oracle ELSA-2013-0646 2013-03-14
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds