DSA-3337-2 gdk-pixbuf -- gdk-pixbufID: oval:org.secpod.oval:def:602306 | Date: (C)2015-12-24 (M)2024-01-29 |
Class: PATCH | Family: unix |
The patch applied for gdk-pixbuf to fix CVE-2015-4491 in DSA 3337-1 was incomplete. This update corrects that problem. For reference the original advisory text follows. Gustavo Grieco discovered a heap overflow in the processing of BMP images which may result in the execution of arbitrary code if a malformed image is opened.
Platform: |
Debian 8.x |
Debian 7.x |
Product: |
libgdk-pixbuf2.0-0 |