Launchpad CVE tracker

CVE 2012-2370

Multiple integer overflows in the read_bitmap_file_data function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service (application crash) via a negative (1) height or (2) width in an XBM file, which triggers a heap-based buffer overflow.

See the

CVE page on Mitre.org for more details.

References

MISC: http://git.gnome.org/b...
MISC: https://bugs.launchpad...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.gentoo.org/...
MISC: http://rhn.redhat.com/...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: https://exchange.xforc...
MISC: http://git.gnome.org/b...
MISC: http://git.gnome.org/b...

Launchpad.net

CVE 2012-2370

Related bugs

References