DSA-3337-2 gdk-pixbuf -- gdk-pixbuf| ID: oval:org.secpod.oval:def:602306 | Date: (C)2015-12-24 (M)2024-01-29 |
| Class: PATCH | Family: unix |
The patch applied for gdk-pixbuf to fix CVE-2015-4491 in DSA 3337-1 was incomplete. This update corrects that problem. For reference the original advisory text follows. Gustavo Grieco discovered a heap overflow in the processing of BMP images which may result in the execution of arbitrary code if a malformed image is opened.
| Platform: |
| Debian 8.x |
| Debian 7.x |
| Product: |
| libgdk-pixbuf2.0-0 |
