GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Thu Dec 24, 2020 2:26 am Post subject: [ GLSA 202012-15 ] GDK-PixBuf |
 |
|
Gentoo Linux Security Advisory
Title: GDK-PixBuf: Denial of service (GLSA 202012-15)
Severity: low
Exploitable: local, remote
Date: 2020-12-23
Bug(s): #759094
ID: 202012-15
Synopsis
A vulnerability in GDK-PixBuf library could lead to a Denial of
Service condition.
Background
GDK-PixBuf is an image loading library for GTK+.
Affected Packages
Package: x11-libs/gdk-pixbuf
Vulnerable: < 2.42.2
Unaffected: >= 2.42.2
Architectures: All supported architectures
Description
It was discovered that the GDK-PixBuf library did not properly handle
certain GIF images.
Impact
A remote attacker could entice a user to open a specially crafted GIF
image in an application linked against GDK-PixBuf library, possibly
resulting in a Denial of Service condition.
Workaround
There is no known workaround at this time.
Resolution
All GDK-PixBuf library users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=x11-libs/gdk-pixbuf-2.42.2"
|
References
CVE-2020-29385 |
|
News & Announcements
