FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gdk-pixbuf2 -- heap overflow and DoS

Affected packages
gdk-pixbuf2 < 2.31.6

Details

VuXML ID f5b8b670-465c-11e5-a49d-bcaec565249c
Discovery 2015-07-12
Entry 2015-08-19

Gustavo Grieco reports:

We found a heap overflow and a DoS in the gdk-pixbuf implementation triggered by the scaling of a malformed bmp.

References

CVE Name CVE-2015-4491
URL https://bugzilla.gnome.org/show_bug.cgi?id=752297