Back to search
CVE-2017-6312
Published: Mar 10, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, which triggers an out-of-bounds read, related to compiler optimizations.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20170221 CVE Request - Multiple vulnerabilities in gdk-pixbuf
mailing-list
x_refsource_MLIST
https://bugzilla.gnome.org/show_bug.cgi?id=779012
x_refsource_MISC
96779
vdb-entry
x_refsource_BID
http://mov.sx/2017/02/21/bug-hunting-gdk-pixbuf.html
x_refsource_MISC
[oss-security] 20170226 Re: CVE Request - Multiple vulnerabilities in gdk-pixbuf
mailing-list
x_refsource_MLIST
GLSA-201709-08
vendor-advisory
x_refsource_GENTOO
[debian-lts-announce] 20191219 [SECURITY] [DLA 2043-1] gdk-pixbuf security update
mailing-list
x_refsource_MLIST
FEDORA-2020-418ce730df
vendor-advisory
x_refsource_FEDORA
FEDORA-2020-a718b79006
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now