Denial of Service Vulnerability in gdk-pixbuf XPM Image Rendering Library by GTK+
CVE-2005-2975

Currently unrated

Key Information:

Vendor: Gnome
Status: Gdkpixbuf
Vendor: CVE Published:; 18 November 2005

What is CVE-2005-2975?

A vulnerability in the gdk-pixbuf XPM image rendering library allows attackers to exploit improperly handled color information in crafted XPM images. Specifically, a maliciously designed image containing a large number of colors can trigger an infinite loop, causing applications that utilize gdk-pixbuf to become unresponsive. This can lead to service interruptions and potential denial of service attacks, indicating the need for careful validation of image files before processing.

References

http://www.novell.com/linux/security/advisories/2005_65_g...

vendor-advisoryx_refsource_SUSE

http://www.gentoo.org/security/en/glsa/glsa-200511-14.xml

vendor-advisoryx_refsource_GENTOO

http://secunia.com/advisories/17710

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 18, 2005
Vulnerability Reserved
Sep 19, 2005

CVE-2005-2975 Data

JSON

Gnome

What is CVE-2005-2975?

References

Timeline