gdk-pixbuf Bugs in Processing XPM Images Let Remote Users Deny Service or Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1015216
|
|
SecurityTracker URL: http://securitytracker.com/id?1015216
|
|
CVE Reference: CVE-2005-2975
, CVE-2005-2976
, CVE-2005-3186
(Links to External Site)
|
Date: Nov 15 2005
|
Impact: Denial of service via network, Execution of arbitrary code via network, User access via network
|
Description: Several vulnerabilities were reported in gdk-pixbuf. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can also cause denial of service conditions.
A remote user can create a specially crafted XPM image file that, when processed using gdk-pixbuf, may cause arbitrary code to be
executed on the target system [CVE-2005-3186].
An integer overflow also exists, allowing a remote user to cause arbitrary code
to be executed or to cause the target application to crash [CVE-2005-2976]. Ludwig Nussel discovered this vulnerability.
A remote
user can cause the target application to enter an infinite loop and stop responding [CVE-2005-2975]. Ludwig Nussel discovered this
vulnerability.
gtk2 is also affected by these vulnerabilities.
|
Impact: A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can cause denial of service conditions.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: ftp.gnome.org/pub/gnome/sources/gdk-pixbuf/ (Links to External Site)
|
Cause: Boundary error, State error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Tue, 15 Nov 2005 10:58:16 -0500
Subject: gdk-pixbuf vulnerabilities
|
Red Hat reported:
A bug was found in the way gdk-pixbuf processes XPM images. An attacker
could create a carefully crafted XPM file in such a way that it could cause
an application linked with gdk-pixbuf to execute arbitrary code when the
file was opened by a victim. The Common Vulnerabilities and Exposures
project has assigned the name CVE-2005-3186 to this issue.
Ludwig Nussel discovered an integer overflow bug in the way gdk-pixbuf
processes XPM images. An attacker could create a carefully crafted XPM file
in such a way that it could cause an application linked with gdk-pixbuf to
execute arbitrary code or crash when the file was opened by a victim. The
Common Vulnerabilities and Exposures project has assigned the name
CVE-2005-2976 to this issue.
Ludwig Nussel also discovered an infinite-loop denial of service bug in the
way gdk-pixbuf processes XPM images. An attacker could create a carefully
crafted XPM file in such a way that it could cause an application linked
with gdk-pixbuf to stop responding when the file was opened by a victim.
The Common Vulnerabilities and Exposures project has assigned the name
CVE-2005-2975 to this issue.
|
|
