SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com






Category:   Application (Generic)  >   gdk-pixbuf Vendors:   GNU [multiple authors]
gdk-pixbuf Bugs in Processing XPM Images Let Remote Users Deny Service or Execute Arbitrary Code
SecurityTracker Alert ID:  1015216
SecurityTracker URL:  http://securitytracker.com/id/1015216
CVE Reference:   CVE-2005-2975, CVE-2005-2976, CVE-2005-3186   (Links to External Site)
Date:  Nov 15 2005
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network


Description:   Several vulnerabilities were reported in gdk-pixbuf. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can also cause denial of service conditions.

A remote user can create a specially crafted XPM image file that, when processed using gdk-pixbuf, may cause arbitrary code to be executed on the target system [CVE-2005-3186].

An integer overflow also exists, allowing a remote user to cause arbitrary code to be executed or to cause the target application to crash [CVE-2005-2976]. Ludwig Nussel discovered this vulnerability.

A remote user can cause the target application to enter an infinite loop and stop responding [CVE-2005-2975]. Ludwig Nussel discovered this vulnerability.

gtk2 is also affected by these vulnerabilities.

Impact:   A remote user can cause arbitrary code to be executed on the target user's system.

A remote user can cause denial of service conditions.

Solution:   No solution was available at the time of this entry.
Vendor URL:  ftp.gnome.org/pub/gnome/sources/gdk-pixbuf/ (Links to External Site)
Cause:   Boundary error, State error
Underlying OS:   Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Nov 15 2005 (Red Hat Issues Fix) gdk-pixbuf Bugs in Processing XPM Images Let Remote Users Deny Service or Execute Arbitrary Code   (bugzilla@redhat.com)
Red Hat has released a fix for Red Hat Enterprise Linux 2.1, 3, and 4.
Nov 15 2005 (Red Hat Issues Fix for gtk2) gdk-pixbuf Bugs in Processing XPM Images Let Remote Users Deny Service or Execute Arbitrary Code   (bugzilla@redhat.com)
Red Hat has released a fix for gtk2, which is affected by two of these vulnerabilities.



 Source Message Contents

Date:  Tue, 15 Nov 2005 10:58:16 -0500
Subject:  gdk-pixbuf vulnerabilities


Red Hat reported:

A bug was found in the way gdk-pixbuf processes XPM images. An attacker
could create a carefully crafted XPM file in such a way that it could cause
an application linked with gdk-pixbuf to execute arbitrary code when the
file was opened by a victim. The Common Vulnerabilities and Exposures
project has assigned the name CVE-2005-3186 to this issue.

Ludwig Nussel discovered an integer overflow bug in the way gdk-pixbuf
processes XPM images. An attacker could create a carefully crafted XPM file
in such a way that it could cause an application linked with gdk-pixbuf to
execute arbitrary code or crash when the file was opened by a victim. The
Common Vulnerabilities and Exposures project has assigned the name
CVE-2005-2976 to this issue.

Ludwig Nussel also discovered an infinite-loop denial of service bug in the
way gdk-pixbuf processes XPM images. An attacker could create a carefully
crafted XPM file in such a way that it could cause an application linked
with gdk-pixbuf to stop responding when the file was opened by a victim.
The Common Vulnerabilities and Exposures project has assigned the name
CVE-2005-2975 to this issue.
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2014, SecurityGlobal.net LLC