Launchpad CVE tracker

CVE 2016-6352

The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.

Related bugs and status

CVE-2016-6352 (Candidate) is related to these bugs:

Bug #1643222: Merge gdk-pixbuf 2.36.0-1 (main) with Debian unstable (main)

Summary				In	Importance	Status
	1643222	Merge gdk-pixbuf 2.36.0-1 (main) with Debian unstable (main)		gdk-pixbuf (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2016071...
MLIST: [oss-security] 2016072...
CONFIRM: https://bugzilla.gnome...
CONFIRM: https://git.gnome.org/...
CONFIRM: https://git.gnome.org/...
SUSE: openSUSE-SU-2016:2276
UBUNTU: USN-3085-1
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2016-6352

Related bugs and status

Related bugs

References