Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 373999 - <x11-libs/gdk-pixbuf-2.22.1-r2: Denial of service vulnerability in gdk_pixbuf__gif_image_load() (CVE-2011-2485)
Summary: <x11-libs/gdk-pixbuf-2.22.1-r2: Denial of service vulnerability in gdk_pixbuf...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://git.gnome.org/browse/gdk-pixbu...
Whiteboard: A3 [glsa]
Keywords:
Depends on:
Blocks: CVE-2011-2198
  Show dependency tree
 
Reported: 2011-07-04 06:03 UTC by Tim Sammut (RETIRED)
Modified: 2012-07-12 00:32 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Tim Sammut (RETIRED) gentoo-dev 2011-07-04 06:03:16 UTC
From the upstream fix at $URL:

GIF: Don't return a partially initialized pixbuf structure

It was found that gdk-pixbuf GIF image loader gdk_pixbuf__gif_image_load() routine did not properly handle certain return values from their subroutines. A remote attacker could provide a specially-crafted GIF image, which once opened in an application, linked against gdk-pixbuf would lead to gdk-pixbuf to return partially initialized pixbuf structure, possibly having huge width and height, leading to that particular application termination due excessive memory use.

The CVE identifier of CVE-2011-2485 has been assigned to this issue.
Comment 1 Pacho Ramos gentoo-dev 2011-07-04 11:39:46 UTC
+*gdk-pixbuf-2.22.1-r2 (04 Jul 2011)
+
+  04 Jul 2011; Pacho Ramos <pacho@gentoo.org> +gdk-pixbuf-2.22.1-r2.ebuild,
+  +files/gdk-pixbuf-2.22.1-CVE-2011-2485.patch:
+  GIF: Don't return a partially initialized pixbuf structure, fix security bug
+  #373999 by Tim Sammut.
+
Comment 2 Pacho Ramos gentoo-dev 2011-07-04 11:45:25 UTC
CCing arches as looks to work ok for me and that way we try to prevent remaining arches from having to stabilize previous and vulnerable versions
Comment 3 Pacho Ramos gentoo-dev 2011-07-04 11:45:42 UTC
amd64 stable
Comment 4 Jeroen Roovers (RETIRED) gentoo-dev 2011-07-05 14:53:42 UTC
Stable for HPPA.
Comment 5 Thomas Kahle (RETIRED) gentoo-dev 2011-07-05 16:00:43 UTC
x86 stable. Thanks
Comment 6 Mark Loeser (RETIRED) gentoo-dev 2011-07-06 23:35:37 UTC
ppc64 done
Comment 7 Kacper Kowalik (Xarthisius) (RETIRED) gentoo-dev 2011-07-09 08:52:21 UTC
ppc/ppc64(-r2) stable
Comment 8 Raúl Porcel (RETIRED) gentoo-dev 2011-07-09 16:25:00 UTC
alpha/arm/ia64/sh/sparc stable
Comment 9 Tim Sammut (RETIRED) gentoo-dev 2011-07-09 18:28:55 UTC
Thanks, everyone. GLSA request filed.
Comment 10 Dmitri Bogomolov 2012-01-28 16:18:29 UTC
Why this isn't closed? There is no <x11-libs/gdk-pixbuf-2.22.1-r2 in tree.
Comment 11 Tim Sammut (RETIRED) gentoo-dev 2012-01-28 16:43:12 UTC
(In reply to comment #10)
> Why this isn't closed? There is no <x11-libs/gdk-pixbuf-2.22.1-r2 in tree.

We don't close security bugs until we've either published a GLSA, or decided that we are not going to for an issue. This bug is waiting for a GLSA to be published.
Comment 12 GLSAMaker/CVETool Bot gentoo-dev 2012-06-23 20:34:25 UTC
This issue was resolved and addressed in
 GLSA 201206-20 at http://security.gentoo.org/glsa/glsa-201206-20.xml
by GLSA coordinator Sean Amoss (ackle).
Comment 13 GLSAMaker/CVETool Bot gentoo-dev 2012-07-12 00:32:47 UTC
CVE-2011-2485 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2485):
  The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf
  before 2.23.5 does not properly handle certain return values, which allows
  remote attackers to cause a denial of service (memory consumption) via a
  crafted GIF image file.