Denial of Service Vulnerability in gdk-pixbuf XPM Image Rendering Library by GTK+
CVE-2005-2975

Currently unrated

Key Information:

Vendor

Gnome
Status
Gdkpixbuf
Vendor
CVE Published:
18 November 2005

What is CVE-2005-2975?

A vulnerability in the gdk-pixbuf XPM image rendering library allows attackers to exploit improperly handled color information in crafted XPM images. Specifically, a maliciously designed image containing a large number of colors can trigger an infinite loop, causing applications that utilize gdk-pixbuf to become unresponsive. This can lead to service interruptions and potential denial of service attacks, indicating the need for careful validation of image files before processing.

References

http://www.novell.com/linux/security/advisories/2005_65_g...
vendor-advisoryx_refsource_SUSE
http://www.gentoo.org/security/en/glsa/glsa-200511-14.xml
vendor-advisoryx_refsource_GENTOO
http://secunia.com/advisories/17710
third-party-advisoryx_refsource_SECUNIA

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2005-2975 : Denial of Service Vulnerability in gdk-pixbuf XPM Image Rendering Library by GTK+