Computer Security
[EN] securityvulns.ru no-pyccku


gdk-pixbuf buffer overflow
Published:24.08.2015
Source:
SecurityVulns ID:14640
Type:library
Threat Level:
6/10
Description:Heap buffer overflow on BMP parsing.
Affected:GNOME : GDK-PixBuf 2.31
CVE:CVE-2015-4491 (Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3337-1] gdk-pixbuf security update (24.08.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod