Pedro Ribeiro discovered that the GDK-PixBuf library did not properly handle certain GIF images. If an user or automated system were tricked into opening a specially crafted GIF file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "gir1.2-gdkpixbuf-2.0" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-0" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-0-dbgsym" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-0-udeb" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-bin" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-bin-dbgsym" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-common" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-dev" }, { "binary_version": "2.40.0+dfsg-3ubuntu0.3", "binary_name": "libgdk-pixbuf2.0-doc" } ] }