http://secunia.com/advisories/12542/ : Description: Multiple vulnerabilities have been reported in GdkPixBuf, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. 1) A variant of a recently disclosed vulnerability in Qt exists within the BMP image processing functionality. This can be exploited to make an affected application enter an infinite loop when a specially crafted BMP image is processed. 2) An input validation error within the "pixbuf_create_from_xpm()" function when decoding XPM images can be exploited to cause an integer overflow when a specially crafted XPM image is processed. Successful exploitation may in turn result in a heap-based buffer overflow, which potentially allows execution of arbitrary code. 3) A boundary error within the "xpm_extract_color()" function when decoding XPM images can be exploited to cause a stack-based buffer overflow when a specially crafted XPM image is processed. Successful exploitation may allow execution of arbitrary code. 4) An input validation error within the ICO image decoding functionality can be exploited to cause an integer overflow when a specially crafted ICO image is processed. Successful exploitation causes an affected application to crash. Solution: Secunia is currently not aware of an official updated version, which addresses the vulnerabilities. However, updates have been issued by various Linux vendors. Provided and/or discovered by: 2-4) Chris Evans Original Advisory: Chris Evans: http://scary.beasts.org/security/CESA-2004-005.txt GNOME Bugzilla: http://bugzilla.gnome.org/show_bug.cgi?id=150601
Note that this also affects the version of gdk-pixbuf in x11-libs/gtk+-2.4.4.
*** Bug 64233 has been marked as a duplicate of this bug. ***
Same vulnerability, two packages affected : x11-libs/gtk+ media-libs/gdk-pixbuf CAN-2004-0753 CAN-2004-0782 CAN-2004-0783 CAN-2004-0788
Created attachment 39701 [details, diff] gdk-pixbuf-0.22.0-CAN-2004-0753.patch Mandrake gdk-pixbuf-0.22.0-CAN-2004-0753.patch
Created attachment 39702 [details, diff] gdk-pixbuf-0.22.0-rh-alt-bound.patch Mandrake gdk-pixbuf-0.22.0-rh-alt-bound.patch
For good reason I'm not on the gnome team. RH SRPMs can be found here: ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/ Mandrake SRPMs here: ftp://spirit.profinet.sk/mirrors/Mandrake/updates/10.0/SRPMS
Updated Mandrake advisory : http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095-1 "The previous package had an incorrect patch applied that would cause some problems with other programs. The updated packages have the correct patch applied. As well, patched gtk+2 packages, which also contain gdk-pixbuf, are now provided."
Added gtk+-2.4.9-r1 & gdk-pixbuf-0.22.0-r3 with patches for these issues. Marked both stable on x86.
amd64 stable
stable on ppc
Sparc stable.
SeJo: gdk-pixbuf wasn't marked ppc stable, apparently you only marked gtk+.
Stable on alpha.
arm/hppa/ia64/ppc done
Thx everyone. Ready for a GLSA.
GLSA 200409-28
stable on ppc64, thanks!
Stable on mips.