MGASA-2016-0322
- Source
- https://advisories.mageia.org/MGASA-2016-0322.html
- Import Source
- https://advisories.mageia.org/MGASA-2016-0322.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2016-0322
- Related
- Published
- 2016-09-25T15:45:31Z
- Modified
- 2016-09-25T15:39:28Z
- Summary
- Updated gdk-pixbuf2.0 packages fix security vulnerability
- Details
-
A write out-of-bounds parsing an ico file was found in gdk-pixbuf. A maliciously crafted file can cause the application to crash (CVE-2016-6352).
The gdk-pixbuf2.0 package has been updated to version 2.32.3 and patched to fix this issue, and a few other possible security issues.
- References
-
- https://advisories.mageia.org/MGASA-2016-0322.html
- https://bugs.mageia.org/show_bug.cgi?id=19070
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6352
- https://git.gnome.org/browse/gdk-pixbuf/tree/NEWS?h=gdk-pixbuf-2-32&id=c09a36169fdb97fcb937acc7c08909b1fb99e952
- https://lists.opensuse.org/opensuse-updates/2016-09/msg00040.html
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:5 / gdk-pixbuf2.0
Package
- Name
- gdk-pixbuf2.0
- Purl
- pkg:rpm/mageia/gdk-pixbuf2.0?distro=mageia-5