Integer Overflow Vulnerability in gdk-pixbuf Affects Remote Attackers
CVE-2012-2370

Currently unrated

Key Information:

Vendor

Gnome
Status
Gdk-pixbuf
Vendor
CVE Published:
13 August 2012

What is CVE-2012-2370?

The gdk-pixbuf library is susceptible to an integer overflow vulnerability within the read_bitmap_file_data function. This vulnerability arises when handling XBM files, which can trigger a heap-based buffer overflow if an attacker crafts a file with a negative height or width. As a result, remote attackers can exploit this flaw to cause denial of service by crashing the application. Proper validation of file dimensions is essential to prevent this type of attack.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.gentoo.org/security/en/glsa/glsa-201206-20.xml
vendor-advisoryx_refsource_GENTOO
http://rhn.redhat.com/errata/RHSA-2013-0135.html
vendor-advisoryx_refsource_REDHAT
http://git.gnome.org/browse/gdk-pixbuf/commit/?id=b1bb305...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.