VYPR
Unrated severityNVD Advisory· Published Aug 13, 2012· Updated Jun 16, 2026

CVE-2012-2370

CVE-2012-2370

Description

Multiple integer overflows in the read_bitmap_file_data function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service (application crash) via a negative (1) height or (2) width in an XBM file, which triggers a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • cpe:2.3:a:gnome:gdk-pixbuf:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:gnome:gdk-pixbuf:*:*:*:*:*:*:*:*range: <=2.26.0
    • cpe:2.3:a:gnome:gdk-pixbuf:2.23.3:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.23.4:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.23.5:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.24.0:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.24.1:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.25.0:*:*:*:*:*:*:*
    • cpe:2.3:a:gnome:gdk-pixbuf:2.25.2:*:*:*:*:*:*:*
    • (no CPE)range: <2.26.1

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.