FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gdk-pixbuf2 -- head overflow and DoS

Affected packages
gdk-pixbuf2 < 2.32.1

Details

VuXML ID 9272a5b0-6b40-11e5-bd7f-bcaec565249c
Discovery 2015-10-02
Entry 2015-10-05

reports:

We found a heap overflow and a DoS in the gdk-pixbuf implementation triggered by the scaling of tga file.

We found a heap overflow in the gdk-pixbuf implementation triggered by the scaling of gif file.

References

CVE Name CVE-2015-7673
CVE Name CVE-2015-7674
URL http://www.openwall.com/lists/oss-security/2015/10/02/10
URL http://www.openwall.com/lists/oss-security/2015/10/02/9
URL https://mail.gnome.org/archives/ftp-release-list/2015-September/msg00201.html
URL https://mail.gnome.org/archives/ftp-release-list/2015-September/msg00287.html