Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gdk-pixbuf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-2370
Multiple integer overflows in the read_bitmap_file_data function in io-xbm.c in gdk-pixbuf prior to 2.26.1 allow remote malicious users to cause a denial of service (application crash) via a negative (1) height or (2) width in an XBM file, which triggers a heap-based buffer overf...
Gnome Gdk-pixbuf 2.25.2
Gnome Gdk-pixbuf 2.25.0
Gnome Gdk-pixbuf 2.23.5
Gnome Gdk-pixbuf 2.24.1
Gnome Gdk-pixbuf 2.23.3
Gnome Gdk-pixbuf 2.23.4
Gnome Gdk-pixbuf 2.24.0
Gnome Gdk-pixbuf
NA
CVE-2011-2485
The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf prior to 2.23.5 does not properly handle certain return values, which allows remote malicious users to cause a denial of service (memory consumption) via a crafted GIF image file.
Gnome Gdk-pixbuf
Gnome Gdk-pixbuf 2.22.1
NA
CVE-2015-7673
io-tga.c in gdk-pixbuf prior to 2.32.0 uses heap memory after its allocation failed, which allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) and possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file.
Opensuse Opensuse 13.2
Gnome Gdk-pixbuf
7.8
CVSSv3
CVE-2017-12447
GdkPixBuf (aka gdk-pixbuf), possibly 2.32.2, as used by GNOME Nautilus 3.14.3 on Ubuntu 16.04, allows malicious users to cause a denial of service (stack corruption) or possibly have unspecified other impact via a crafted file folder.
Gnome Nautilus 3.14.3
Gnome Gdk-pixbuf 2.32.2
7.8
CVSSv3
CVE-2015-8875
Multiple integer overflows in the (1) pixops_composite_nearest, (2) pixops_composite_color_nearest, and (3) pixops_process functions in pixops/pixops.c in gdk-pixbuf prior to 2.33.1 allow remote malicious users to cause a denial of service (application crash) or possibly execute ...
Gnome Gdk-pixbuf
Debian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-2870
An exploitable integer overflow vulnerability exists in the tiff_image_parse functionality of Gdk-Pixbuf 2.36.6 when compiled with Clang. A specially crafted tiff file can cause a heap-overflow resulting in remote code execution. An attacker can send a file or a URL to trigger th...
Gnome Gdk-pixbuf 2.36.6
Debian Debian Linux 8.0
7.8
CVSSv3
CVE-2017-2862
An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulner...
Gnome Gdk-pixbuf 2.36.6
Debian Debian Linux 8.0
8.8
CVSSv3
CVE-2021-20240
A flaw was found in gdk-pixbuf in versions prior to 2.42.0. An integer wraparound leading to an out of bounds write can occur when a crafted GIF image is loaded. An attacker may cause applications to crash or could potentially execute code on the victim system. The highest threat...
Gnome Gdk-pixbuf
Fedoraproject Fedora 33
Fedoraproject Fedora 34
7.5
CVSSv3
CVE-2017-6311
gdk-pixbuf-thumbnailer.c in gdk-pixbuf allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors related to printing an error message.
Gnome Gdk-pixbuf
Fedoraproject Fedora 30
Fedoraproject Fedora 31
7.8
CVSSv3
CVE-2021-46829
GNOME GdkPixbuf (aka GDK-PixBuf) prior to 2.42.8 allows a heap-based buffer overflow when compositing or clearing frames in GIF files, as demonstrated by io-gif-animation.c composite_frame. This overflow is controllable and could be abused for code execution, especially on 32-bit...
Gnome Gdk-pixbuf
Fedoraproject Fedora 35
Debian Debian Linux 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »