Download
| Alert*
oval:org.secpod.oval:def:89001326
gdk-pixbuf is installed oval:org.secpod.oval:def:1800353 gdk-pixbuf is installed oval:org.secpod.oval:def:1800701 An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability. Fixed In: G ... oval:org.secpod.oval:def:1800746 An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability. Fixed in: G ... oval:org.secpod.oval:def:89002516 This update for librsvg fixes the following issues: - CVE-2018-1000041: Input validation issue could lead to credentials leak. Update to version 2.40.20: + Except for emergencies, this will be the LAST RELEASE of the librsvg-2.40.x series. We are moving to 2.41, which is vastly improved over the 2. ... oval:org.secpod.oval:def:89044626 This update for gdk-pixbuf provides the following fixes: - Add overflow checks when creating pixbuf structures in general - Fix arithmetic overflow in the BMP loader - Adds support for BMPv3 with bitmasks oval:org.secpod.oval:def:89044989 This update for gdk-pixbuf fixes the following issues: - CVE-2017-2862: JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability - CVE-2017-2870: tiff_image_parse Code Execution Vulnerability - CVE-2017-6313: A dangerous integer underflow in io-icns.c - CVE-2017-6314: Infinite loop ... oval:org.secpod.oval:def:1801868 Integer underflow in the GIF loader of gdk-pixbuf via crafted input leads to segmentation fault. Fixed In Version: gdk-pixbuf 2.42.0. oval:org.secpod.oval:def:1800849 CVE-2017-6311: NULL dereference on gdk-pixbuf thumbnailer. oval:org.secpod.oval:def:1800909 CVE-2017-6311: NULL dereference on gdk-pixbuf thumbnailer oval:org.secpod.oval:def:3300765 SUSE Security Update: Security update for gdk-pixbuf oval:org.secpod.oval:def:89047549 This update for gdk-pixbuf fixes the following issues: - CVE-2021-46829: Fixed overflow when compositing or clearing frames . oval:org.secpod.oval:def:3300590 SUSE Security Update: Security update for gdk-pixbuf oval:org.secpod.oval:def:89046994 This update for gdk-pixbuf fixes the following issues: - CVE-2021-44648: Fixed overflow vulnerability in lzw code size . oval:org.secpod.oval:def:89047794 This update for gdk-pixbuf fixes the following issues: Update to version 2.42.9: - CVE-2021-44648: Fixed overflow vulnerability in lzw code size . Bugfixes: - Fixed loading of larger images . - Avoided bashism in baselibs postscript . oval:org.secpod.oval:def:1800508 An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability. Fixed in Gd ... oval:org.secpod.oval:def:1800352 CVE-2017-6311: NULL dereference on gdk-pixbuf thumbnailer; oval:org.secpod.oval:def:89002105 This update for gdk-pixbuf fixes the following issues: Security issue fixed: - CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE . |