rpm package
opensuse/gdk-pixbuf&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/gdk-pixbuf&distro=openSUSE%20Leap%2015.4
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-46829 | — | < 2.42.8-150400.5.3.1 | 2.42.8-150400.5.3.1 | Jul 24, 2022 | GNOME GdkPixbuf (aka GDK-PixBuf) before 2.42.8 allows a heap-based buffer overflow when compositing or clearing frames in GIF files, as demonstrated by io-gif-animation.c composite_frame. This overflow is controllable and could be abused for code execution, especially on 32-bit s | ||
| CVE-2021-44648 | — | < 2.42.9-150400.5.6.1 | 2.42.9-150400.5.6.1 | Jan 12, 2022 | GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12. |
- CVE-2021-46829Jul 24, 2022affected < 2.42.8-150400.5.3.1fixed 2.42.8-150400.5.3.1
GNOME GdkPixbuf (aka GDK-PixBuf) before 2.42.8 allows a heap-based buffer overflow when compositing or clearing frames in GIF files, as demonstrated by io-gif-animation.c composite_frame. This overflow is controllable and could be abused for code execution, especially on 32-bit s
- CVE-2021-44648Jan 12, 2022affected < 2.42.9-150400.5.6.1fixed 2.42.9-150400.5.6.1
GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12.