ID FEDORA_2004-289.NASL Type nessus Reporter Tenable Modified 2018-07-19T00:00:00
Description
During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.
During a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)
Chris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70103
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2004-289.
#
include("compat.inc");
if (description)
{
script_id(14744);
script_version ("1.13");
script_cvs_date("Date: 2018/07/19 23:19:04");
script_cve_id("CVE-2004-0753");
script_xref(name:"FEDORA", value:"2004-289");
script_name(english:"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora Core host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a
flaw was discovered in the BMP image processor of gtk2. An attacker
could create a carefully crafted BMP file which would cause an
application to enter an infinite loop and not respond to user input
when the file was opened by a victim. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753
to this issue.
During a security audit Chris Evans discovered a stack and a heap
overflow in the XPM image decoder. An attacker could create a
carefully crafted XPM file which could cause an application linked
with gtk2 to crash or possibly execute arbitrary code when the file
was opened by a victim. (CVE-2004-0782, CVE-2004-0783)
Chris Evans also discovered an integer overflow in the ICO image
decoder. An attacker could create a carefully crafted ICO file which
could cause an application linked with gtk2 to crash when the file was
opened by a victim. (CVE-2004-0788)
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
# https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?7949bea8"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:gtk2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:gtk2-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:2");
script_set_attribute(attribute:"patch_publication_date", value:"2004/09/15");
script_set_attribute(attribute:"plugin_publication_date", value:"2004/09/15");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^2([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 2.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC2", reference:"gtk2-2.4.7-2.4")) flag++;
if (rpm_check(release:"FC2", reference:"gtk2-debuginfo-2.4.7-2.4")) flag++;
if (rpm_check(release:"FC2", reference:"gtk2-devel-2.4.7-2.4")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gtk2 / gtk2-debuginfo / gtk2-devel");
}
{"id": "FEDORA_2004-289.NASL", "bulletinFamily": "scanner", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2004-09-15T00:00:00", "modified": "2018-07-19T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "reporter": "Tenable", "references": ["http://www.nessus.org/u?7949bea8"], "cvelist": ["CVE-2004-0753"], "type": "nessus", "lastseen": "2018-09-02T00:10:51", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "enchantments": {}, "hash": "1f620928e34fd9ba59b171c9706f1c123c634fe9dce45c7a417b6ba6ec68755c", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "44cb002eada94b974cb3d846457159e5", "key": "sourceData"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "55c15b2ee014f410bc35a2ea45f82539", "key": "modified"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2016-09-26T17:26:46", "modified": "2015-10-21T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.2", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"$Revision: 1.12 $\");\n script_cvs_date(\"$Date: 2015/10/21 21:09:31 $\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:26:46"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "a0ae0501282410d6171e2aaf57396c681d71f9ff768fe7ca38b3fd0aa6cf326d", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "44cb002eada94b974cb3d846457159e5", "key": "sourceData"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "55c15b2ee014f410bc35a2ea45f82539", "key": "modified"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2017-10-29T13:46:04", "modified": "2015-10-21T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"$Revision: 1.12 $\");\n script_cvs_date(\"$Date: 2015/10/21 21:09:31 $\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-10-29T13:46:04"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "a6eebe475d346839023f814f83b845ecd6244d61103c0640daefd339a09d3003", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2018-08-02T08:29:30", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-02T08:29:30"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "66f44944911261fa7424d9424d979f264cf679ccd776e256f9a9b5d3f4bb89bb", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2018-08-30T19:58:40", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:58:40"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "bf83f24487cd675d394a79f0f420f535"}, {"key": "cvelist", "hash": "49e6633ed2be16e68ac31dc971118d8c"}, {"key": "cvss", "hash": "84813b1457b92d6ba1174abffbb83a2f"}, {"key": "description", "hash": "ef87dcdda9b5c120b2e85cf27ac3b61d"}, {"key": "href", "hash": "0ceeb06c1374ef550e5bba73476aad93"}, {"key": "modified", "hash": "e2914120514a29eeccc01e381df164d8"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "729db3e07a09db3a41dc1734e04ce44e"}, {"key": "published", "hash": "5fc6166254a9d850b27783380800b4fe"}, {"key": "references", "hash": "76acd40a22a0c1b78b1a26c0e2af75da"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "4b55b6f144817890e463581d54f60681"}, {"key": "title", "hash": "baf4d544c8366c0398a49f23d6904d9b"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "a6eebe475d346839023f814f83b845ecd6244d61103c0640daefd339a09d3003", "viewCount": 0, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "objectVersion": "1.3", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "14744", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"]}
{"cve": [{"lastseen": "2017-10-11T11:05:57", "references": ["http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:095", "http://www.redhat.com/support/errata/RHSA-2004-466.html", "http://www.redhat.com/support/errata/RHSA-2004-447.html", "http://www.kb.cert.org/vuls/id/825374", "http://www.securityfocus.com/bid/11195", "https://exchange.xforce.ibmcloud.com/vulnerabilities/17383", "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000875", "http://www.securityfocus.com/archive/1/archive/1/419771/100/0/threaded", "http://www.mandriva.com/security/advisories?name=MDKSA-2005:214", "http://www.debian.org/security/2004/dsa-546", "https://bugzilla.fedora.us/show_bug.cgi?id=2005"], "description": "The BMP image processor for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted BMP file.", "edition": 3, "reporter": "NVD", "published": "2004-10-20T00:00:00", "title": "CVE-2004-0753", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:05:57", "vector": "NONE", "value": 4.3}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10585", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10585"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2004-0753"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10585", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10585"}], "modified": "2017-10-10T21:29:32", "cpe": ["cpe:/a:gtk:gtk%2b:2.2.1", "cpe:/a:gnome:gdkpixbuf:0.18", "cpe:/a:gnome:gdkpixbuf:0.17", "cpe:/a:gnome:gdkpixbuf:0.20", "cpe:/a:gtk:gtk%2b:2.0.2", "cpe:/a:gtk:gtk%2b:2.2.3", "cpe:/a:gnome:gdkpixbuf:0.22", "cpe:/a:gtk:gtk%2b:2.2.4", "cpe:/a:gtk:gtk%2b:2.0.6"], "id": "CVE-2004-0753", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0753", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "cert": [{"lastseen": "2018-08-31T02:38:17", "references": ["http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2004-0753", "http://www.gnome.org/", "http://www.gtk.org/download/", "http://www.securitytracker.com/alerts/2004/Sep/1011285.html", "http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095", "http://developer.gnome.org/arch/imaging/gdkpixbuf.html", "http://secunia.com/advisories/12542/", "https://rhn.redhat.com/errata/RHSA-2004-447.html", "http://www.gtk.org/"], "description": "### Overview\n\nA vulnerability exists in the BMP handling of GdkPixbuf. This vulnerability can lead to a denial-of-service condition.\n\n### Description\n\n[GdkPixbuf](<http://developer.gnome.org/arch/imaging/gdkpixbuf.html>) is a library used by [GTK+ 2](<http://www.gtk.org/>) for loading and rendering images. GTK+ is a multi-platform toolkit for creating graphical user interfaces. It is used by the [Gnome](<http://www.gnome.org/>) desktop and other applications. GdkPixbuf contains a heap overflow vulnerability in the `DoCompressed()` function of the BMP loading routine. \n \n--- \n \n### Impact\n\nBy convincing the user to open a specially crafted BMP file, an attacker could cause a denial of service by crashing the application that uses GdkPixbuf. \n \n--- \n \n### Solution\n\n**Apply a patch from your vendor**\n\nFor vendor-specific information regarding vulnerable status and patch availability, please see the vendor section of this document. \n \n**Upgrade your version of gtk+** \n \nUpgrade your system as specified by your vendor. If you need to compile the software from the original source, get [gtk+ 2.4.10](<http://www.gtk.org/download/>). \n \n--- \n \n### Systems Affected \n\nVendor| Status| Date Notified| Date Updated \n---|---|---|--- \nDebian| | 17 Sep 2004| 20 Sep 2004 \nSuSE Inc.| | 17 Sep 2004| 20 Sep 2004 \nApple Computer Inc.| | 17 Sep 2004| 31 Jan 2005 \nHitachi| | 17 Sep 2004| 28 Sep 2004 \nBSDI| | 17 Sep 2004| 20 Sep 2004 \nConectiva| | 17 Sep 2004| 20 Sep 2004 \nCray Inc.| | 17 Sep 2004| 20 Sep 2004 \nEMC Corporation| | 17 Sep 2004| 20 Sep 2004 \nEngarde| | 17 Sep 2004| 20 Sep 2004 \nFreeBSD| | 17 Sep 2004| 20 Sep 2004 \nFujitsu| | 17 Sep 2004| 20 Sep 2004 \nHewlett-Packard Company| | 17 Sep 2004| 20 Sep 2004 \nIBM| | 17 Sep 2004| 20 Sep 2004 \nIBM-zSeries| | 17 Sep 2004| 20 Sep 2004 \nIBM eServer| | 17 Sep 2004| 20 Sep 2004 \nIf you are a vendor and your product is affected, [let us know](<mailto:cert@cert.org?Subject=VU%23825374 Vendor Status Inquiry>). \n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | N/A | N/A \n \n### References\n\n * <http://secunia.com/advisories/12542/>\n * <http://www.securitytracker.com/alerts/2004/Sep/1011285.html>\n * <http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095>\n * <https://rhn.redhat.com/errata/RHSA-2004-447.html>\n\n### Credit\n\nThis vulnerability was reported by the Red Hat Security Response Team.\n\nThis document was written by Will Dormann.\n\n### Other Information\n\n * CVE IDs: [CAN-2004-0753](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CAN-2004-0753>)\n * Date Public: 15 Sep 2004\n * Date First Published: 01 Oct 2004\n * Date Last Updated: 02 Nov 2004\n * Severity Metric: 1.77\n * Document Revision: 11\n\n", "edition": 3, "reporter": "CERT", "published": "2004-10-01T00:00:00", "title": "GdkPixbuf BMP parser may enter an infinite loop", "type": "cert", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "info", "cvelist": ["CVE-2004-0753", "CVE-2004-0753"], "modified": "2004-11-02T00:00:00", "id": "VU:825374", "href": "https://www.kb.cert.org/vuls/id/825374", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:05", "references": [], "edition": 1, "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1011285\n[Secunia Advisory ID:12543](https://secuniaresearch.flexerasoftware.com/advisories/12543/)\n[Secunia Advisory ID:12615](https://secuniaresearch.flexerasoftware.com/advisories/12615/)\n[Secunia Advisory ID:12564](https://secuniaresearch.flexerasoftware.com/advisories/12564/)\n[Secunia Advisory ID:12568](https://secuniaresearch.flexerasoftware.com/advisories/12568/)\n[Secunia Advisory ID:12542](https://secuniaresearch.flexerasoftware.com/advisories/12542/)\n[Secunia Advisory ID:12548](https://secuniaresearch.flexerasoftware.com/advisories/12548/)\n[Secunia Advisory ID:12551](https://secuniaresearch.flexerasoftware.com/advisories/12551/)\n[Secunia Advisory ID:12545](https://secuniaresearch.flexerasoftware.com/advisories/12545/)\n[Secunia Advisory ID:12550](https://secuniaresearch.flexerasoftware.com/advisories/12550/)\n[Secunia Advisory ID:17657](https://secuniaresearch.flexerasoftware.com/advisories/17657/)\n[Related OSVDB ID: 9997](https://vulners.com/osvdb/OSVDB:9997)\n[Related OSVDB ID: 9999](https://vulners.com/osvdb/OSVDB:9999)\n[Related OSVDB ID: 9998](https://vulners.com/osvdb/OSVDB:9998)\nRedHat RHSA: RHSA-2004:466\nRedHat RHSA: RHSA-2004:447\nOther Advisory URL: http://bugzilla.gnome.org/show_bug.cgi?id=150601\nOther Advisory URL: http://security.gentoo.org/glsa/glsa-200409-28.xml\nOther Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095\nOther Advisory URL: http://www.debian.org/security/2004/dsa-546\nOther Advisory URL: http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:214\n[CVE-2004-0753](https://vulners.com/cve/CVE-2004-0753)\n", "reporter": "OSVDB", "published": "2004-09-16T05:33:31", "type": "osvdb", "title": "GdkPixbuf BMP Processor DoS", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2004-0753"], "modified": "2004-09-16T05:33:31", "href": "https://vulners.com/osvdb/OSVDB:9996", "id": "OSVDB:9996", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-02T00:06:14", "references": ["http://www.nessus.org/u?9e7a99a4"], "pluginID": "14743", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2004-09-15T00:00:00", "title": "Fedora Core 1 : gtk2-2.2.4-10 (2004-288)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0753"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:gtk2", "cpe:/o:fedoraproject:fedora_core:1", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "id": "FEDORA_2004-288.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14743", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-288.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14743);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-288\");\n\n script_name(english:\"Fedora Core 1 : gtk2-2.2.4-10 (2004-288)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000293.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9e7a99a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 1.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-2.2.4-10\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-debuginfo-2.2.4-10\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-devel-2.2.4-10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:35:58", "references": ["http://www.nessus.org/u?4873ce3d"], "pluginID": "14742", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2004-09-15T00:00:00", "title": "Fedora Core 2 : gdk-pixbuf-0.22.0-11.2.3 (2004-287)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0753", "CVE-2004-0782"], "modified": "2018-07-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel"], "id": "FEDORA_2004-287.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14742", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-287.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14742);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\");\n script_xref(name:\"FEDORA\", value:\"2004-287\");\n\n script_name(english:\"Fedora Core 2 : gdk-pixbuf-0.22.0-11.2.3 (2004-287)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000294.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?4873ce3d\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-debuginfo-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-debuginfo / gdk-pixbuf-devel / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:02:24", "references": ["http://www.nessus.org/u?e7ae414a"], "pluginID": "14741", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2004-09-15T00:00:00", "title": "Fedora Core 1 : gdk-pixbuf-0.22.0-11.2.2 (2004-286)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0753", "CVE-2004-0782"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo", "cpe:/o:fedoraproject:fedora_core:1", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf", "p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel"], "id": "FEDORA_2004-286.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14741", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-286.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14741);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\");\n script_xref(name:\"FEDORA\", value:\"2004-286\");\n\n script_name(english:\"Fedora Core 1 : gdk-pixbuf-0.22.0-11.2.2 (2004-286)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000292.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7ae414a\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 1.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-debuginfo-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-debuginfo / gdk-pixbuf-devel / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:42:33", "references": [], "pluginID": "14751", "description": "A vulnerability was found in the gdk-pixbug bmp loader where a bad BMP image could send the bmp loader into an infinite loop (CVE-2004-0753).\n\nChris Evans found a heap-based overflow and a stack-based overflow in the xpm loader of gdk-pixbuf (CVE-2004-0782 and CVE-2004-0783).\n\nChris Evans also discovered an integer overflow in the ico loader of gdk-pixbuf (CVE-2004-0788).\n\nAll four problems have been corrected in these updated packages.\n\nUpdate :\n\nThe previous package had an incorrect patch applied that would cause some problems with other programs. The updated packages have the correct patch applied.\n\nAs well, patched gtk+2 packages, which also contain gdk-pixbuf, are now provided.", "edition": 5, "reporter": "Tenable", "published": "2004-09-16T00:00:00", "title": "Mandrake Linux Security Advisory : gdk-pixbuf/gtk+2 (MDKSA-2004:095-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders", "p-cpe:/a:mandriva:linux:libgdk-pixbuf2", "p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel", "p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2", "cpe:/o:mandrakesoft:mandrake_linux:10.0", "p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0", "p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0-devel", "p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0", "p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0-devel", "p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel", "cpe:/o:mandrakesoft:mandrake_linux:9.2", "p-cpe:/a:mandriva:linux:gtk+2.0", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1", "p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2", "p-cpe:/a:mandriva:linux:libgtk+2.0_0", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2", "p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel", "p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel", "p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0", "p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1", "p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0", "p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel", "p-cpe:/a:mandriva:linux:lib64gtk+2.0_0", "p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0"], "id": "MANDRAKE_MDKSA-2004-095.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14751", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2004:095. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14751);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 20:59:13\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"MDKSA\", value:\"2004:095-1\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gdk-pixbuf/gtk+2 (MDKSA-2004:095-1)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A vulnerability was found in the gdk-pixbug bmp loader where a bad BMP\nimage could send the bmp loader into an infinite loop (CVE-2004-0753).\n\nChris Evans found a heap-based overflow and a stack-based overflow in\nthe xpm loader of gdk-pixbuf (CVE-2004-0782 and CVE-2004-0783).\n\nChris Evans also discovered an integer overflow in the ico loader of\ngdk-pixbuf (CVE-2004-0788).\n\nAll four problems have been corrected in these updated packages.\n\nUpdate :\n\nThe previous package had an incorrect patch applied that would cause\nsome problems with other programs. The updated packages have the\ncorrect patch applied.\n\nAs well, patched gtk+2 packages, which also contain gdk-pixbuf, are\nnow provided.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gtk+2.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK10.0\", reference:\"gdk-pixbuf-loaders-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", reference:\"gtk+2.0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-x11-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.2\", reference:\"gdk-pixbuf-loaders-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"gtk+2.0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-x11-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:48:23", "references": ["http://www.debian.org/security/2004/dsa-546"], "pluginID": "15383", "description": "Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf library used in Gtk. It is possible for an attacker to execute arbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an external package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the following vulnerabilities :\n\n - CAN-2004-0753 Denial of service in bmp loader.\n\n - CAN-2004-0782\n\n Heap-based overflow in pixbuf_create_from_xpm.\n\n - CAN-2004-0788\n\n Integer overflow in the ico loader.", "edition": 6, "reporter": "Tenable", "published": "2004-09-29T00:00:00", "title": "Debian DSA-546-1 : gdk-pixbuf - several vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2018-08-09T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:gdk-pixbuf", "cpe:/o:debian:debian_linux:3.0"], "id": "DEBIAN_DSA-546.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=15383", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-546. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15383);\n script_version(\"1.23\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"CERT\", value:\"577654\");\n script_xref(name:\"CERT\", value:\"729894\");\n script_xref(name:\"CERT\", value:\"825374\");\n script_xref(name:\"DSA\", value:\"546\");\n\n script_name(english:\"Debian DSA-546-1 : gdk-pixbuf - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf\nlibrary used in Gtk. It is possible for an attacker to execute\narbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an\nexternal package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the\nfollowing vulnerabilities :\n\n - CAN-2004-0753\n Denial of service in bmp loader.\n\n - CAN-2004-0782\n\n Heap-based overflow in pixbuf_create_from_xpm.\n\n - CAN-2004-0788\n\n Integer overflow in the ico loader.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2004/dsa-546\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the gdk-pixbuf packages.\n\nFor the stable distribution (woody) these problems have been fixed in\nversion 0.17.0-2woody2.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-dev\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-gnome-dev\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-gnome2\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf2\", reference:\"0.17.0-2woody2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:55:46", "references": ["http://bugzilla.gnome.org/show_bug.cgi?id=150601", "https://www.redhat.com/security/data/cve/CVE-2004-0783.html", "https://www.redhat.com/security/data/cve/CVE-2004-0782.html", "https://www.redhat.com/security/data/cve/CVE-2004-0788.html", "http://rhn.redhat.com/errata/RHSA-2004-447.html", "https://www.redhat.com/security/data/cve/CVE-2004-0753.html"], "pluginID": "14738", "description": "Updated gdk-pixbuf packages that fix several security flaws are now available.\n\nThe gdk-pixbuf package contains an image loading library used with the GNOME GUI desktop environment.\n\n[Updated 15th September 2004] Packages have been updated to correct a bug which caused the xpm loader to fail.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nThese packages have also been updated to correct a bug which caused the xpm loader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which contain backported patches and are not vulnerable to these issues.", "edition": 6, "reporter": "Tenable", "published": "2004-09-15T00:00:00", "title": "RHEL 2.1 / 3 : gdk-pixbuf (RHSA-2004:447)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2018-08-13T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-devel", "p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf", "p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-gnome"], "id": "REDHAT-RHSA-2004-447.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14738", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:447. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14738);\n script_version (\"1.21\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"RHSA\", value:\"2004:447\");\n\n script_name(english:\"RHEL 2.1 / 3 : gdk-pixbuf (RHSA-2004:447)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gdk-pixbuf packages that fix several security flaws are now\navailable.\n\nThe gdk-pixbuf package contains an image loading library used with the\nGNOME GUI desktop environment.\n\n[Updated 15th September 2004] Packages have been updated to correct a\nbug which caused the xpm loader to fail.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nThese packages have also been updated to correct a bug which caused\nthe xpm loader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which\ncontain backported patches and are not vulnerable to these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0782.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0783.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0788.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-447.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected gdk-pixbuf, gdk-pixbuf-devel and / or\ngdk-pixbuf-gnome packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(2\\.1|3)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1 / 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:447\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-0.22.0-11.2.2E\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.2E\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.2E\")) flag++;\n\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-0.22.0-11.3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-devel-0.22.0-11.3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-gnome-0.22.0-11.3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-devel / gdk-pixbuf-gnome\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:40:19", "references": ["http://bugzilla.gnome.org/show_bug.cgi?id=150601", "https://security.gentoo.org/glsa/200409-28"], "pluginID": "14791", "description": "The remote host is affected by the vulnerability described in GLSA-200409-28 (GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities)\n\n A vulnerability has been discovered in the BMP image preprocessor (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow in the pixbuf_create_from_xpm() function, resulting in a heap overflow (CAN-2004-0782). He also found a potential stack-based buffer overflow in the xpm_extract_color() function (CAN-2004-0783). A possible integer overflow has also been found in the ICO decoder.\n Impact :\n\n With a specially crafted BMP image an attacker could cause an affected application to enter an infinite loop when that image is being processed.\n Also, by making use of specially crafted XPM or ICO images an attacker could trigger the overflows, which potentially allows the execution of arbitrary code.\n Workaround :\n\n There is no known workaround at this time.", "edition": 5, "reporter": "Tenable", "published": "2004-09-22T00:00:00", "title": "GLSA-200409-28 : GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2018-08-10T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:gtk+", "p-cpe:/a:gentoo:linux:gdk-pixbuf"], "id": "GENTOO_GLSA-200409-28.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14791", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200409-28.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14791);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/08/10 18:07:05\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"GLSA\", value:\"200409-28\");\n\n script_name(english:\"GLSA-200409-28 : GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200409-28\n(GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities)\n\n A vulnerability has been discovered in the BMP image preprocessor\n (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow\n in the pixbuf_create_from_xpm() function, resulting in a heap overflow\n (CAN-2004-0782). He also found a potential stack-based buffer overflow in\n the xpm_extract_color() function (CAN-2004-0783). A possible integer\n overflow has also been found in the ICO decoder.\n \nImpact :\n\n With a specially crafted BMP image an attacker could cause an affected\n application to enter an infinite loop when that image is being processed.\n Also, by making use of specially crafted XPM or ICO images an attacker\n could trigger the overflows, which potentially allows the execution of\n arbitrary code.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200409-28\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All GTK+ 2 users should upgrade to the latest version:\n # emerge sync\n # emerge -pv '>=x11-libs/gtk+-2.4.9-r1'\n # emerge '>=x11-libs/gtk+-2.4.9-r1'\n All GdkPixbuf users should upgrade to the latest version:\n # emerge sync\n # emerge -pv '>=media-libs/gdk-pixbuf-0.22.0-r3'\n # emerge '>=media-libs/gdk-pixbuf-0.22.0-r3'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:gtk+\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/22\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"media-libs/gdk-pixbuf\", unaffected:make_list(\"ge 0.22.0-r3\"), vulnerable:make_list(\"lt 0.22.0-r3\"))) flag++;\nif (qpkg_check(package:\"x11-libs/gtk+\", unaffected:make_list(\"ge 2.4.9-r1\", \"lt 2.0.0\"), vulnerable:make_list(\"lt 2.4.9-r1\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"GTK+ 2 / gdk-pixbuf\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:34", "references": ["http://bugzilla.gnome.org/show_bug.cgi?id=150601", "https://www.redhat.com/security/data/cve/CVE-2004-0783.html", "https://www.redhat.com/security/data/cve/CVE-2004-0782.html", "http://rhn.redhat.com/errata/RHSA-2004-466.html", "http://bugzilla.gnome.org/show_bug.cgi?id=144808", "https://www.redhat.com/security/data/cve/CVE-2004-0788.html", "https://www.redhat.com/security/data/cve/CVE-2004-0753.html"], "pluginID": "14734", "description": "Updated gtk2 packages that fix several security flaws and bugs are now available.\n\nThe gtk2 package contains the GIMP ToolKit (GTK+), a library for creating graphical user interfaces for the X Window System.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on various X servers, such as Hummingbird, ReflectionX, and X-Win32. If a server was configured to use the Swiss German, Swiss French, or France French keyboard layouts, Mode_Switched characters were unable to be entered within GTK based applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain backported patches and are not vulnerable to these issues.", "edition": 6, "reporter": "Tenable", "published": "2004-09-15T00:00:00", "title": "RHEL 3 : gtk2 (RHSA-2004:466)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2018-08-13T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:3", "p-cpe:/a:redhat:enterprise_linux:gtk2-devel", "p-cpe:/a:redhat:enterprise_linux:gtk2"], "id": "REDHAT-RHSA-2004-466.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14734", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:466. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14734);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"RHSA\", value:\"2004:466\");\n\n script_name(english:\"RHEL 3 : gtk2 (RHSA-2004:466)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gtk2 packages that fix several security flaws and bugs are now\navailable.\n\nThe gtk2 package contains the GIMP ToolKit (GTK+), a library for\ncreating graphical user interfaces for the X Window System.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on\nvarious X servers, such as Hummingbird, ReflectionX, and X-Win32. If a\nserver was configured to use the Swiss German, Swiss French, or France\nFrench keyboard layouts, Mode_Switched characters were unable to be\nentered within GTK based applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain\nbackported patches and are not vulnerable to these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0782.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0783.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2004-0788.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugzilla.gnome.org/show_bug.cgi?id=144808\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2004-466.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2 and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:466\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"gtk2-2.2.4-8.1\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gtk2-devel-2.2.4-8.1\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-devel\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:22", "references": [], "pluginID": "20446", "description": "A heap overflow vulnerability in the GTK+ gdk-pixbuf XPM image rendering library could allow for arbitrary code execution. This allows an attacker to provide a carefully crafted XPM image which could possibly allow for arbitrary code execution in the context of the user viewing the image. (CVE-2005-3186)\n\nLudwig Nussel discovered an integer overflow bug in the way gdk-pixbuf processes XPM images. An attacker could create a carefully crafted XPM file in such a way that it could cause an application linked with gdk-pixbuf to execute arbitrary code or crash when the file was opened by a victim. (CVE-2005-2976)\n\nLudwig Nussel also discovered an infinite-loop denial of service bug in the way gdk-pixbuf processes XPM images. An attacker could create a carefully crafted XPM file in such a way that it could cause an application linked with gdk-pixbuf to stop responding when the file was opened by a victim. (CVE-2005-2975)\n\nThe gtk+2.0 library also contains the same gdk-pixbuf code with the same vulnerability.\n\nThe Corporate Server 2.1 packages have additional patches to address CVE-2004-0782,0783,0788 (additional XPM/ICO image issues), CVE-2004-0753 (BMP image issues) and CVE-2005-0891 (additional BMP issues). These were overlooked on this platform with earlier updates.\n\nThe updated packages have been patched to correct these issues.", "edition": 5, "reporter": "Tenable", "published": "2006-01-15T00:00:00", "title": "Mandrake Linux Security Advisory : gdk-pixbuf (MDKSA-2005:214)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2005-0891", "CVE-2004-0753", "CVE-2005-3186", "CVE-2004-0782", "CVE-2004-0783", "CVE-2005-2975", "CVE-2005-2976"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders", "p-cpe:/a:mandriva:linux:libgdk-pixbuf2", "p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel", "p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2", "p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0", "p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel", "p-cpe:/a:mandriva:linux:gtk+2.0", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1", "p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2", "cpe:/o:mandriva:linux:2006", "p-cpe:/a:mandriva:linux:libgtk+2.0_0", "x-cpe:/o:mandrakesoft:mandrake_linux:le2005", "p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2", "p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel", "p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel", "p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0", "p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1", "p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0", "p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel", "p-cpe:/a:mandriva:linux:lib64gtk+2.0_0"], "id": "MANDRAKE_MDKSA-2005-214.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=20446", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2005:214. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(20446);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2018/07/19 20:59:13\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\", \"CVE-2005-0891\", \"CVE-2005-2975\", \"CVE-2005-2976\", \"CVE-2005-3186\");\n script_xref(name:\"MDKSA\", value:\"2005:214\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gdk-pixbuf (MDKSA-2005:214)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A heap overflow vulnerability in the GTK+ gdk-pixbuf XPM image\nrendering library could allow for arbitrary code execution. This\nallows an attacker to provide a carefully crafted XPM image which\ncould possibly allow for arbitrary code execution in the context of\nthe user viewing the image. (CVE-2005-3186)\n\nLudwig Nussel discovered an integer overflow bug in the way gdk-pixbuf\nprocesses XPM images. An attacker could create a carefully crafted XPM\nfile in such a way that it could cause an application linked with\ngdk-pixbuf to execute arbitrary code or crash when the file was opened\nby a victim. (CVE-2005-2976)\n\nLudwig Nussel also discovered an infinite-loop denial of service bug\nin the way gdk-pixbuf processes XPM images. An attacker could create a\ncarefully crafted XPM file in such a way that it could cause an\napplication linked with gdk-pixbuf to stop responding when the file\nwas opened by a victim. (CVE-2005-2975)\n\nThe gtk+2.0 library also contains the same gdk-pixbuf code with the\nsame vulnerability.\n\nThe Corporate Server 2.1 packages have additional patches to address\nCVE-2004-0782,0783,0788 (additional XPM/ICO image issues),\nCVE-2004-0753 (BMP image issues) and CVE-2005-0891 (additional BMP\nissues). These were overlooked on this platform with earlier updates.\n\nThe updated packages have been patched to correct these issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gtk+2.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2006\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:mandrakesoft:mandrake_linux:le2005\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2005/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/01/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK10.2\", reference:\"gdk-pixbuf-loaders-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", reference:\"gtk+2.0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+-x11-2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK2006.0\", reference:\"gdk-pixbuf-loaders-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", reference:\"gtk+2.0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+-x11-2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:34:47", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_mips.deb", "arch": "mips", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_ia64.deb", "arch": "ia64", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_i386.deb", "arch": "i686", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_alpha.deb", "arch": "alpha", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2.diff", "packageFilename": "gdk-pixbuf_0.17.0-2woody2.diff.gz", "arch": "src", "packageName": "gdk-pixbuf", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_m68k.deb", "arch": "m68k", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_hppa.deb", "arch": "hppa", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_sparc.deb", "arch": "sparc", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_s390.deb", "arch": "s390x", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_m68k.deb", "arch": "m68k", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_sparc.deb", "arch": "sparc", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_mips.deb", "arch": "mips", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_i386.deb", "arch": "i686", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_s390.deb", "arch": "s390x", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_sparc.deb", "arch": "sparc", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_mipsel.deb", "arch": "mipsel", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_s390.deb", "arch": "s390x", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_powerpc.deb", "arch": "ppc", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_mipsel.deb", "arch": "mipsel", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_ia64.deb", "arch": "ia64", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_arm.deb", "arch": "arm", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_i386.deb", "arch": "i686", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_ia64.deb", "arch": "ia64", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "gdk-pixbuf_0.17.0-2woody2.dsc", "arch": "src", "packageName": "gdk-pixbuf", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mips.deb", "arch": "mips", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_mips.deb", "arch": "mips", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0.orig", "packageFilename": "gdk-pixbuf_0.17.0.orig.tar.gz", "arch": "src", "packageName": "gdk-pixbuf", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_arm.deb", "arch": "arm", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_hppa.deb", "arch": "hppa", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_alpha.deb", "arch": "alpha", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_powerpc.deb", "arch": "ppc", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_i386.deb", "arch": "i686", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_sparc.deb", "arch": "sparc", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mipsel.deb", "arch": "mipsel", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_alpha.deb", "arch": "alpha", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_s390.deb", "arch": "s390x", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_arm.deb", "arch": "arm", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_alpha.deb", "arch": "alpha", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_m68k.deb", "arch": "m68k", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_mipsel.deb", "arch": "mipsel", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome-dev_0.17.0-2woody2_m68k.deb", "arch": "m68k", "packageName": "libgdk-pixbuf-gnome-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_hppa.deb", "arch": "hppa", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_hppa.deb", "arch": "hppa", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf2_0.17.0-2woody2_arm.deb", "arch": "arm", "packageName": "libgdk-pixbuf2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_powerpc.deb", "arch": "ppc", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-dev_0.17.0-2woody2_powerpc.deb", "arch": "ppc", "packageName": "libgdk-pixbuf-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.0", "packageVersion": "0.17.0-2woody2", "packageFilename": "libgdk-pixbuf-gnome2_0.17.0-2woody2_ia64.deb", "arch": "ia64", "packageName": "libgdk-pixbuf-gnome2", "operator": "lt"}], "edition": 1, "description": "Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf library used in Gtk. It is possible for an attacker to execute arbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an external package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the following vulnerabilities:\n\n * [CAN-2004-0753](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753>)\n\nDenial of service in bmp loader.\n\n * [CAN-2004-0782](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782>)\n\nHeap-based overflow in pixbuf_create_from_xpm.\n\n * [CAN-2004-0788](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788>)\n\nInteger overflow in the ico loader.\n\nFor the stable distribution (woody) these problems have been fixed in version 0.17.0-2woody2.\n\nFor the unstable distribution (sid) these problems have been fixed in version 0.22.0-7.\n\nWe recommend that you upgrade your gdk-pixbuf packages.", "reporter": "Debian", "published": "2004-09-16T00:00:00", "type": "debian", "title": "gdk-pixbuf -- several vulnerabilities", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782"], "modified": "2004-09-16T00:00:00", "id": "DSA-546", "href": "http://www.debian.org/security/dsa-546", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2017-07-24T12:50:02", "references": [], "pluginID": "53237", "description": "The remote host is missing an update to gdk-pixbuf\nannounced via advisory DSA 546-1.", "edition": 2, "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Debian Security Advisory DSA 546-1 (gdk-pixbuf)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=53237", "id": "OPENVAS:53237", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_546_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 546-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf\nlibrary used in Gtk. It is possible for an attacker to execute\narbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an\nexternal package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the\nfollowing vulnerabilities:\n\nCVE-2004-0753\n\nDenial of service in bmp loader.\n\nCVE-2004-0782\n\nHeap-based overflow in pixbuf_create_from_xpm.\n\nCVE-2004-0788\n\nInteger overflow in the ico loader.\n\nFor the stable distribution (woody) these problems have been fixed in\nversion 0.17.0-2woody2.\n\nFor the unstable distribution (sid) these problems have been fixed in\nversion 0.22.0-7.\n\nWe recommend that you upgrade your gdk-pixbuf packages.\";\ntag_summary = \"The remote host is missing an update to gdk-pixbuf\nannounced via advisory DSA 546-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20546-1\";\n\nif(description)\n{\n script_id(53237);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:45:44 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0788\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Debian Security Advisory DSA 546-1 (gdk-pixbuf)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-dev\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-gnome-dev\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-gnome2\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf2\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:49:55", "references": [], "pluginID": "54684", "description": "The remote host is missing updates announced in\nadvisory GLSA 200409-28.", "edition": 2, "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Gentoo Security Advisory GLSA 200409-28 (gtk+)", "type": "openvas", "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=54684", "id": "OPENVAS:54684", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The GdkPixbuf library, which is also included in GTK+ 2, contains several\nvulnerabilities that could lead to a Denial of Service or the execution of\narbitrary code.\";\ntag_solution = \"All GTK+ 2 users should upgrade to the latest version:\n\n # emerge sync\n\n # emerge -pv '>=x11-libs/gtk+-2.4.9-r1'\n # emerge '>=x11-libs/gtk+-2.4.9-r1'\n\nAll GdkPixbuf users should upgrade to the latest version:\n\n # emerge sync\n\n # emerge -pv '>=media-libs/gdk-pixbuf-0.22.0-r3'\n # emerge '>=media-libs/gdk-pixbuf-0.22.0-r3'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200409-28\nhttp://bugs.gentoo.org/show_bug.cgi?id=64230\nhttp://bugzilla.gnome.org/show_bug.cgi?id=150601\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200409-28.\";\n\n \n\nif(description)\n{\n script_id(54684);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200409-28 (gtk+)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"x11-libs/gtk+\", unaffected: make_list(\"ge 2.4.9-r1\", \"lt 2.0.0\"), vulnerable: make_list(\"lt 2.4.9-r1\"))) != NULL) {\n report += res;\n}\nif ((res = ispkgvuln(pkg:\"media-libs/gdk-pixbuf\", unaffected: make_list(\"ge 0.22.0-r3\"), vulnerable: make_list(\"lt 0.22.0-r3\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:45:59", "references": ["http://bugzilla.gnome.org/show_bug.cgi?id=150601", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0783", "https://bugs.gentoo.org/show_bug.cgi?id=64230", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "0.22.0-r3", "packageName": "media-libs/gdk-pixbuf", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "2.4.9-r1", "packageName": "x11-libs/gtk+", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nGTK+ (GIMP Toolkit +) is a toolkit for creating graphical user interfaces. The GdkPixbuf library provides facilities for image handling. It is available as a standalone library as well as shipped with GTK+ 2. \n\n### Description\n\nA vulnerability has been discovered in the BMP image preprocessor (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow in the pixbuf_create_from_xpm() function, resulting in a heap overflow (CAN-2004-0782). He also found a potential stack-based buffer overflow in the xpm_extract_color() function (CAN-2004-0783). A possible integer overflow has also been found in the ICO decoder. \n\n### Impact\n\nWith a specially crafted BMP image an attacker could cause an affected application to enter an infinite loop when that image is being processed. Also, by making use of specially crafted XPM or ICO images an attacker could trigger the overflows, which potentially allows the execution of arbitrary code. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll GTK+ 2 users should upgrade to the latest version: \n \n \n # emerge sync\n \n # emerge -pv \">=x11-libs/gtk+-2.4.9-r1\"\n # emerge \">=x11-libs/gtk+-2.4.9-r1\"\n\nAll GdkPixbuf users should upgrade to the latest version: \n \n \n # emerge sync\n \n # emerge -pv \">=media-libs/gdk-pixbuf-0.22.0-r3\"\n # emerge \">=media-libs/gdk-pixbuf-0.22.0-r3\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2004-09-21T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2004-0788", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783"], "modified": "2004-09-21T00:00:00", "id": "GLSA-200409-28", "href": "https://security.gentoo.org/glsa/200409-28", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-05-11T21:14:00", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "x86_64", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "i386", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "i386", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.2.2E.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ia64", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ia64", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ppc", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "i386", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ia64", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "i386", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.2.2E.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "i386", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "ia64", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.2.2E.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ppc", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "ia64", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.2.2E.ia64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "x86_64", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "i386", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.2.2E.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390x", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390x", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "x86_64", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.3.3.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "s390x", "packageName": "gdk-pixbuf-devel", "packageFilename": "gdk-pixbuf-devel-0.22.0-11.3.3.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.3.3", "arch": "ppc", "packageName": "gdk-pixbuf-gnome", "packageFilename": "gdk-pixbuf-gnome-0.22.0-11.3.3.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "0.22.0-11.2.2E", "arch": "ia64", "packageName": "gdk-pixbuf", "packageFilename": "gdk-pixbuf-0.22.0-11.2.2E.ia64.rpm", "operator": "lt"}], "description": "The gdk-pixbuf package contains an image loading library used with the\nGNOME GUI desktop environment.\n\n[Updated 15th September 2004]\nPackages have been updated to correct a bug which caused the xpm loader\nto fail.\n\nDuring testing of a previously fixed flaw in Qt (CAN-2004-0691), a flaw was\ndiscovered in the BMP image processor of gdk-pixbuf. An attacker could\ncreate a carefully crafted BMP file which would cause an application\nto enter an infinite loop and not respond to user input when the file was\nopened by a victim. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow\nin the XPM image decoder. An attacker could create a carefully crafted XPM\nfile which could cause an application linked with gtk2 to crash or possibly\nexecute arbitrary code when the file was opened by a victim.\n(CAN-2004-0782, CAN-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder.\nAn attacker could create a carefully crafted ICO file which could cause an\napplication linked with gtk2 to crash when the file is opened by a victim.\n(CAN-2004-0788)\n\nThese packages have also been updated to correct a bug which caused the xpm\nloader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which\ncontain backported patches and are not vulnerable to these issues.", "reporter": "RedHat", "published": "2004-09-15T04:00:00", "type": "redhat", "title": "(RHSA-2004:447) gdk-pixbuf security update", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2004-0691", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783", "CVE-2004-0788"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-11T23:26:50", "id": "RHSA-2004:447", "href": "https://access.redhat.com/errata/RHSA-2004:447", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-08-02T22:58:27", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.2.4-8.1", "packageFilename": "gtk2-2.2.4-8.1.ia64.rpm", "packageName": "gtk2", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "2.2.4-8.1", "packageFilename": "gtk2-devel-2.2.4-8.1.ia64.rpm", "packageName": "gtk2-devel", "arch": "ia64", "operator": "lt"}], "description": "The gtk2 package contains the GIMP ToolKit (GTK+), a library for creating\ngraphical user interfaces for the X Window System. \n\nDuring testing of a previously fixed flaw in Qt (CAN-2004-0691), a flaw was\ndiscovered in the BMP image processor of gtk2. An attacker could create a\ncarefully crafted BMP file which would cause an application to enter an\ninfinite loop and not respond to user input when the file was opened by a\nvictim. The Common Vulnerabilities and Exposures project (cve.mitre.org)\nhas assigned the name CAN-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow\nin the XPM image decoder. An attacker could create a carefully crafted XPM\nfile which could cause an application linked with gtk2 to crash or possibly\nexecute arbitrary code when the file was opened by a victim. \n(CAN-2004-0782, CAN-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. \nAn attacker could create a carefully crafted ICO file which could cause an\napplication linked with gtk2 to crash when the file was opened by a victim.\n(CAN-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on various\nX servers, such as Hummingbird, ReflectionX, and X-Win32. If a server was\nconfigured to use the Swiss German, Swiss French, or France French keyboard\nlayouts, Mode_Switched characters were unable to be entered within GTK\nbased applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain\nbackported patches and are not vulnerable to these issues.", "reporter": "RedHat", "published": "2004-09-15T04:00:00", "type": "redhat", "title": "(RHSA-2004:466) gtk2 security update", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2004-0691", "CVE-2004-0753", "CVE-2004-0782", "CVE-2004-0783", "CVE-2004-0788"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-07-29T20:33:24", "id": "RHSA-2004:466", "href": "https://access.redhat.com/errata/RHSA-2004:466", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
