CVE-2017-6312

🗓️ 10 Mar 2017 02:00:00Reported by mitreType

Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service via a crafted image entry offset in an ICO file, triggering an out-of-bounds read

Reporter	Title	Published	Views	Family All 65
AlpineLinux	CVE-2017-6312	10 Mar 201702:00	–	alpinelinux
Cloud Foundry	USN-3532-1: GDK-PixBuf vulnerabilities \| Cloud Foundry	24 Jan 201800:00	–	cloudfoundry
CNVD	gdk-pixbuf integer overflow vulnerability (CNVD-2017-03889)	13 Mar 201700:00	–	cnvd
Cvelist	CVE-2017-6312	10 Mar 201702:00	–	cvelist
Debian	[SECURITY] [DLA 2043-1] gdk-pixbuf security update	19 Dec 201918:37	–	debian
Debian	[SECURITY] [DSA 4088-1] gdk-pixbuf security update	15 Jan 201819:59	–	debian
Debian CVE	CVE-2017-6312	10 Mar 201702:00	–	debiancve
Tenable Nessus	Debian DSA-4088-1 : gdk-pixbuf - security update	16 Jan 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : gdk-pixbuf2 (EulerOS-SA-2019-2386)	10 Dec 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : gdk-pixbuf2 (EulerOS-SA-2019-2585)	19 Dec 201900:00	–	nessus

NVD

Node

gnome gdk-pixbufRange<2.36.12

Node

fedoraproject fedoraMatch30

fedoraproject fedoraMatch31

Node

debian debian_linuxMatch8.0

Source	Link
security	www.security.gentoo.org/glsa/201709-08
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSAZ6UCKKXC5VOWXGWQHOX2ZBLLATIOT/
bugzilla	www.bugzilla.gnome.org/show_bug.cgi
mov	www.mov.sx/2017/02/21/bug-hunting-gdk-pixbuf.html
openwall	www.openwall.com/lists/oss-security/2017/02/21/4
securityfocus	www.securityfocus.com/bid/96779
openwall	www.openwall.com/lists/oss-security/2017/02/26/1
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJF5ARFOX4BFUK6YCBKGAKBQYECO3AI2/
lists	www.lists.debian.org/debian-lts-announce/2019/12/msg00025.html

13 May 2026 00:24Current

6Medium risk

Vulners AI Score6

CVSS 24.3

CVSS 3.15.5

EPSS0.00324

CWE-190