CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2015-8875 – Debian Security Advisory 3589-1
https://notcve.org/view.php?id=CVE-2015-8875
30 May 2016 — Multiple integer overflows in the (1) pixops_composite_nearest, (2) pixops_composite_color_nearest, and (3) pixops_process functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image, which triggers a heap-based buffer overflow. Múltiples desbordamientos de entero en las funciones (1) pixops_composite_nearest, (2) pixops_composite_color_nearest y (3) pixops_process en pixops/pixops.c e... • http://www.debian.org/security/2016/dsa-3589 • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2015-7674 – Ubuntu Security Notice USN-2767-1
https://notcve.org/view.php?id=CVE-2015-7674
14 Oct 2015 — Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file, which triggers a heap-based buffer overflow. Desbordamiento de entero en la función pixops_scale_nearest en pixops/pixops.c en gdk-pixbuf en versiones anteriores a 2.32.1 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) y posiblemen... • http://ftp.gnome.org/pub/gnome/sources/gdk-pixbuf/2.32/gdk-pixbuf-2.32.1.news • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2015-7673 – Ubuntu Security Notice USN-2767-1
https://notcve.org/view.php?id=CVE-2015-7673
14 Oct 2015 — io-tga.c in gdk-pixbuf before 2.32.0 uses heap memory after its allocation failed, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) and possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file. io-tga.c in gdk-pixbuf en versiones anteriores a 2.32.0 utiliza la memoria dinámica tras su asignación fallida, lo que permite a atacantes remotos provocar una denegación de servicio (desbordamiento de buffer basado en memoria dinámica y ca... • http://ftp.gnome.org/pub/gnome/sources/gdk-pixbuf/2.32/gdk-pixbuf-2.32.0.news • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 7%CPEs: 17EXPL: 0CVE-2015-4491 – Mozilla: Heap overflow in gdk-pixbuf when scaling bitmap images (MFSA 2015-88)
https://notcve.org/view.php?id=CVE-2015-4491
11 Aug 2015 — Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling. Vulnerabilidad de desbordamiento de entero en la función make_filter_table en pixops/pixops... • http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165701.html • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 2%CPEs: 8EXPL: 2CVE-2012-2370 – gdk-pixbuf: DoS (GLib error and application abort) due to an integer overflow in the XBM image file format loader
https://notcve.org/view.php?id=CVE-2012-2370
13 Aug 2012 — Multiple integer overflows in the read_bitmap_file_data function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service (application crash) via a negative (1) height or (2) width in an XBM file, which triggers a heap-based buffer overflow. Múltiples desbordamientos de enteros en la función read_bitmap_file_data de io-xbm.c en gdk-pixbuf antes de v2.26.1 permite a atacantes remotos causar una denegación de servicio (por caída de la aplicación) a través de un valor negativ... • http://git.gnome.org/browse/gdk-pixbuf • CWE-189: Numeric Errors CWE-190: Integer Overflow or Wraparound •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 1CVE-2011-2485
https://notcve.org/view.php?id=CVE-2011-2485
03 Jul 2012 — The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (memory consumption) via a crafted GIF image file. La función gdk_pixbuf__gif_image_load en gdk-pixbuf/io-gif.c en gdk-pixbuf anterior a v2.23.5 no maneja adecuadamente ciertos valores de retorno, lo que permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) a través de un archivo de... • http://ftp.gnome.org/pub/GNOME/sources/gdk-pixbuf/2.23/gdk-pixbuf-2.23.5.news •