rpm package
suse/gtk2&distro=SUSE Linux Enterprise Desktop 11 SP4
pkg:rpm/suse/gtk2&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-7552 | Hig | 7.8 | < 2.18.9-0.39.1 | 2.18.9-0.39.1 | Apr 18, 2016 | Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file. | |
| CVE-2015-7674 | — | < 2.18.9-0.35.1 | 2.18.9-0.35.1 | Oct 26, 2015 | Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file, which triggers a heap-based buffer overf | ||
| CVE-2015-4491 | — | < 2.18.9-0.35.1 | 2.18.9-0.35.1 | Aug 16, 2015 | Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or ca |
- affected < 2.18.9-0.39.1fixed 2.18.9-0.39.1
Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file.
- CVE-2015-7674Oct 26, 2015affected < 2.18.9-0.35.1fixed 2.18.9-0.35.1
Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file, which triggers a heap-based buffer overf
- CVE-2015-4491Aug 16, 2015affected < 2.18.9-0.35.1fixed 2.18.9-0.35.1
Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or ca