io-tga.c in gdk-pixbuf prior to 2.32.0 uses heap memory after its allocation failed, which allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) and possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse opensuse 13.2 |
||
gnome gdk-pixbuf |