Integer overflow in the gdkcairosetsourcepixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, allows remote attackers to cause a denial of service (crash) via a large image file, which triggers a large memory allocation.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "eog", "binary_version": "3.10.2-0ubuntu5.1" }, { "binary_name": "eog-dbg", "binary_version": "3.10.2-0ubuntu5.1" }, { "binary_name": "eog-dbgsym", "binary_version": "3.10.2-0ubuntu5.1" }, { "binary_name": "eog-dev", "binary_version": "3.10.2-0ubuntu5.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "gir1.2-gtk-2.0", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "gir1.2-gtk-2.0-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "gtk2-engines-pixbuf", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "gtk2-engines-pixbuf-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "gtk2.0-examples", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "gtk2.0-examples-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-common", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-common-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-dbg", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-dev", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-dev-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail-doc", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail18", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgail18-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-0", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-0-dbg", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-0-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-0-udeb", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-0-udeb-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-bin", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-bin-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-common", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-dev", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-dev-dbgsym", "binary_version": "2.24.23-0ubuntu1.4" }, { "binary_name": "libgtk2.0-doc", "binary_version": "2.24.23-0ubuntu1.4" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "eog", "binary_version": "3.18.1-1ubuntu2" }, { "binary_name": "eog-dbg", "binary_version": "3.18.1-1ubuntu2" }, { "binary_name": "eog-dbgsym", "binary_version": "3.18.1-1ubuntu2" }, { "binary_name": "eog-dev", "binary_version": "3.18.1-1ubuntu2" } ] }