Denial of Service Vulnerability in BMP Image Processors by GDK-Pixbuf and GTK2
CVE-2004-0753

Currently unrated

Key Information:

Vendor

Gnome
Status
Gdkpixbuf
Gtk
Vendor
CVE Published:
20 October 2004

What is CVE-2004-0753?

The BMP image processing component of GDK-Pixbuf and GTK2 is susceptible to a denial of service attack due to improper handling of crafted BMP files. Attackers can exploit this vulnerability to create an infinite loop, effectively rendering the application unresponsive. This can be triggered by a specially crafted BMP file, potentially affecting systems that process such images without adequate validation. The vulnerability affects versions of GDK-Pixbuf prior to 0.22 and GTK2 versions before 2.2.4, creating a risk for applications relying on these libraries for image rendering.

References

https://bugzilla.fedora.us/show_bug.cgi?id=2005
vendor-advisoryx_refsource_FEDORA
http://www.debian.org/security/2004/dsa-546
vendor-advisoryx_refsource_DEBIAN
http://www.redhat.com/support/errata/RHSA-2004-466.html
vendor-advisoryx_refsource_REDHAT

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.