gdk security update

🗓️ 31 Aug 2015 16:41:33Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 109 Views

Security update for gdk-pixbuf library due to heap-based buffer overflow

Reporter	Title	Published	Views	Family All 178
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Firefox affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance	17 Jun 201822:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities of Mozilla Firefox in IBM Storwize V7000 Unified	18 Jun 201800:09	–	ibm
IBM Security Bulletins	Security Bulletin: Mozilla Firefox vulnerability issues in IBM SONAS	18 Jun 201800:09	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Mozilla gdk-pixbuf2 affects PowerKVM (CVE-2015-4491)	18 Jun 201801:29	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in gdk-pixbuf affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance	17 Jun 201822:30	–	ibm
Tenable Nessus	Mozilla Firefox < 40.0 Multiple Vulnerabilities	9 Sep 201500:00	–	nessus
Tenable Nessus	CentOS 5 / 6 / 7 : firefox (CESA-2015:1586)	12 Aug 201500:00	–	nessus
Tenable Nessus	CentOS 5 / 6 / 7 : thunderbird (CESA-2015:1682)	22 Oct 201500:00	–	nessus
Tenable Nessus	CentOS 6 / 7 : gdk-pixbuf2 (CESA-2015:1694)	22 Oct 201500:00	–	nessus
Tenable Nessus	Debian DLA-434-1 : gtk+2.0 security update	29 Feb 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	6	i686	gdk-pixbuf2	2.24.1-6.el6_7	gdk-pixbuf2-2.24.1-6.el6_7.i686.rpm
CentOS	6	i686	gdk-pixbuf2-devel	2.24.1-6.el6_7	gdk-pixbuf2-devel-2.24.1-6.el6_7.i686.rpm
CentOS	6	i686	gdk-pixbuf2	2.24.1-6.el6_7	gdk-pixbuf2-2.24.1-6.el6_7.i686.rpm
CentOS	6	x86_64	gdk-pixbuf2	2.24.1-6.el6_7	gdk-pixbuf2-2.24.1-6.el6_7.x86_64.rpm
CentOS	6	i686	gdk-pixbuf2-devel	2.24.1-6.el6_7	gdk-pixbuf2-devel-2.24.1-6.el6_7.i686.rpm
CentOS	6	x86_64	gdk-pixbuf2-devel	2.24.1-6.el6_7	gdk-pixbuf2-devel-2.24.1-6.el6_7.x86_64.rpm
CentOS	7	i686	gdk-pixbuf2	2.28.2-5.el7_1	gdk-pixbuf2-2.28.2-5.el7_1.i686.rpm
CentOS	7	x86_64	gdk-pixbuf2	2.28.2-5.el7_1	gdk-pixbuf2-2.28.2-5.el7_1.x86_64.rpm
CentOS	7	i686	gdk-pixbuf2-devel	2.28.2-5.el7_1	gdk-pixbuf2-devel-2.28.2-5.el7_1.i686.rpm
CentOS	7	x86_64	gdk-pixbuf2-devel	2.28.2-5.el7_1	gdk-pixbuf2-devel-2.28.2-5.el7_1.x86_64.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
rhn	www.rhn.redhat.com/errata/RHSA-2015-1694.html
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/

01 Sep 2015 23:35Current

7High risk

Vulners AI Score7

CVSS 26.8

EPSS0.084

centos gdk-pixbuf integer overflow bmp image red hat mozilla heap-based buffer arbitrary code upgrade security advisory