Synopsis: Moderate: gdk-pixbuf2 security update
Advisory ID: SLSA-2015:1694-1
Issue Date: 2015-08-31
CVE Numbers: CVE-2015-4491
—
An integer overflow, leading to a heap-based buffer overflow, was found in
the way gdk-pixbuf, an image loading library for GNOME, scaled certain
bitmap format images. An attacker could use a specially crafted BMP image
file that, when processed by an application compiled against the gdk-
pixbuf library, would cause that application to crash or execute arbitrary
code with the permissions of the user running the application.
(CVE-2015-4491)
—
SL6
x86_64
gdk-pixbuf2-2.24.1-6.el6_7.i686.rpm
gdk-pixbuf2-2.24.1-6.el6_7.x86_64.rpm
gdk-pixbuf2-debuginfo-2.24.1-6.el6_7.i686.rpm
gdk-pixbuf2-debuginfo-2.24.1-6.el6_7.x86_64.rpm
gdk-pixbuf2-devel-2.24.1-6.el6_7.i686.rpm
gdk-pixbuf2-devel-2.24.1-6.el6_7.x86_64.rpm
i386
gdk-pixbuf2-2.24.1-6.el6_7.i686.rpm
gdk-pixbuf2-debuginfo-2.24.1-6.el6_7.i686.rpm
gdk-pixbuf2-devel-2.24.1-6.el6_7.i686.rpm
SL7
x86_64
gdk-pixbuf2-2.28.2-5.el7_1.i686.rpm
gdk-pixbuf2-2.28.2-5.el7_1.x86_64.rpm
gdk-pixbuf2-debuginfo-2.28.2-5.el7_1.i686.rpm
gdk-pixbuf2-debuginfo-2.28.2-5.el7_1.x86_64.rpm
gdk-pixbuf2-devel-2.28.2-5.el7_1.i686.rpm
gdk-pixbuf2-devel-2.28.2-5.el7_1.x86_64.rpm
– Scientific Linux Development Team
