oss-sec mailing list archives
CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1
From: Gustavo Grieco <gustavo.grieco () gmail com>
Date: Thu, 1 Oct 2015 09:59:12 -0300
Hello, We found a heap overflow and a DoS in the gdk-pixbuf implementation triggered by the scaling of tga file. These issues are only fixed in the recent release of gdk-pixbuf 2.32.1 but affects older versions (we tested it in a fully updated Ubuntu 14.04). These issues were found using QuickFuzz. Regards, Gustavo.
Current thread:
- CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Gustavo Grieco (Oct 01)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Kurt Seifried (Oct 01)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Gustavo Grieco (Oct 01)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Andreas Stieger (Oct 05)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Gustavo Grieco (Oct 05)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Gustavo Grieco (Oct 01)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 Kurt Seifried (Oct 01)
- Re: CVE request: Heap overflow and DoS with a tga file in gdk-pixbuf < 2.32.1 cve-assign (Oct 02)