gdk-pixbuf -- image decoding vulnerabilities

2004-09-15T00:00:00
ID 3D1E9267-073F-11D9-B45D-000C41E2CDAD
Type freebsd
Reporter FreeBSD
Modified 2004-11-09T00:00:00

Description

Chris Evans discovered several flaws in the gdk-pixbuf XPM image decoder:

Heap-based overflow in pixbuf_create_from_xpm Stack-based overflow in xpm_extract_color Integer overflows in io-ico.c

Some of these flaws are believed to be exploitable.