{"id": "FEDORA_2004-289.NASL", "bulletinFamily": "scanner", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2004-09-15T00:00:00", "modified": "2018-07-19T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "reporter": "Tenable", "references": ["http://www.nessus.org/u?7949bea8"], "cvelist": ["CVE-2004-0753"], "type": "nessus", "lastseen": "2019-02-21T01:08:06", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 6, "enchantments": {"dependencies": {"modified": "2019-01-16T20:05:38", "references": [{"idList": ["OSVDB:9996"], "type": "osvdb"}, {"idList": ["FEDORA_2004-288.NASL", "FEDORA_2004-286.NASL", "DEBIAN_DSA-546.NASL", "REDHAT-RHSA-2004-447.NASL", "FEDORA_2004-287.NASL", "REDHAT-RHSA-2004-466.NASL", "GENTOO_GLSA-200409-28.NASL", "MANDRAKE_MDKSA-2004-095.NASL", "MANDRAKE_MDKSA-2005-214.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:54684", "OPENVAS:53237"], "type": "openvas"}, {"idList": ["VU:729894", "VU:825374"], "type": "cert"}, {"idList": ["CVE-2004-0753"], "type": "cve"}, {"idList": ["DEBIAN:DSA-546-1:2468D"], "type": "debian"}, {"idList": ["GLSA-200409-28"], "type": "gentoo"}, {"idList": ["RHSA-2004:447", "RHSA-2004:466"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "f6c1271873e6c2bf1b59e4407697171e18bc7a22d59fdafa6b5f9b0b011fdc7b", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "73bd541a6db70bc78653228484cf0ad7", "key": "description"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2019-01-16T20:05:38", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["description"], "edition": 6, "lastseen": "2019-01-16T20:05:38"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "enchantments": {}, "hash": "1f620928e34fd9ba59b171c9706f1c123c634fe9dce45c7a417b6ba6ec68755c", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "44cb002eada94b974cb3d846457159e5", "key": "sourceData"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "55c15b2ee014f410bc35a2ea45f82539", "key": "modified"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2016-09-26T17:26:46", "modified": "2015-10-21T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.2", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"$Revision: 1.12 $\");\n script_cvs_date(\"$Date: 2015/10/21 21:09:31 $\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:26:46"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "a6eebe475d346839023f814f83b845ecd6244d61103c0640daefd339a09d3003", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2018-09-02T00:10:51", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["description"], "edition": 5, "lastseen": "2018-09-02T00:10:51"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "a0ae0501282410d6171e2aaf57396c681d71f9ff768fe7ca38b3fd0aa6cf326d", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "44cb002eada94b974cb3d846457159e5", "key": "sourceData"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "55c15b2ee014f410bc35a2ea45f82539", "key": "modified"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2017-10-29T13:46:04", "modified": "2015-10-21T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"$Revision: 1.12 $\");\n script_cvs_date(\"$Date: 2015/10/21 21:09:31 $\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-10-29T13:46:04"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "a6eebe475d346839023f814f83b845ecd6244d61103c0640daefd339a09d3003", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2018-08-02T08:29:30", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-02T08:29:30"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "cvelist": ["CVE-2004-0753"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "66f44944911261fa7424d9424d979f264cf679ccd776e256f9a9b5d3f4bb89bb", "hashmap": [{"hash": "0ceeb06c1374ef550e5bba73476aad93", "key": "href"}, {"hash": "e2914120514a29eeccc01e381df164d8", "key": "modified"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "baf4d544c8366c0398a49f23d6904d9b", "key": "title"}, {"hash": "bf83f24487cd675d394a79f0f420f535", "key": "cpe"}, {"hash": "729db3e07a09db3a41dc1734e04ce44e", "key": "pluginID"}, {"hash": "4b55b6f144817890e463581d54f60681", "key": "sourceData"}, {"hash": "ef87dcdda9b5c120b2e85cf27ac3b61d", "key": "description"}, {"hash": "49e6633ed2be16e68ac31dc971118d8c", "key": "cvelist"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "76acd40a22a0c1b78b1a26c0e2af75da", "key": "references"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "5fc6166254a9d850b27783380800b4fe", "key": "published"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=14744", "id": "FEDORA_2004-289.NASL", "lastseen": "2018-08-30T19:58:40", "modified": "2018-07-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "14744", "published": "2004-09-15T00:00:00", "references": ["http://www.nessus.org/u?7949bea8"], "reporter": "Tenable", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "title": "Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:58:40"}], "edition": 7, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "bf83f24487cd675d394a79f0f420f535"}, {"key": "cvelist", "hash": "49e6633ed2be16e68ac31dc971118d8c"}, {"key": "cvss", "hash": "84813b1457b92d6ba1174abffbb83a2f"}, {"key": "description", "hash": "ef87dcdda9b5c120b2e85cf27ac3b61d"}, {"key": "href", "hash": "0ceeb06c1374ef550e5bba73476aad93"}, {"key": "modified", "hash": "e2914120514a29eeccc01e381df164d8"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "729db3e07a09db3a41dc1734e04ce44e"}, {"key": "published", "hash": "5fc6166254a9d850b27783380800b4fe"}, {"key": "references", "hash": "76acd40a22a0c1b78b1a26c0e2af75da"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "4b55b6f144817890e463581d54f60681"}, {"key": "title", "hash": "baf4d544c8366c0398a49f23d6904d9b"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "a6eebe475d346839023f814f83b845ecd6244d61103c0640daefd339a09d3003", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-0753"]}, {"type": "nessus", "idList": ["FEDORA_2004-288.NASL", "FEDORA_2004-286.NASL", "FEDORA_2004-287.NASL", "MANDRAKE_MDKSA-2004-095.NASL", "REDHAT-RHSA-2004-447.NASL", "GENTOO_GLSA-200409-28.NASL", "REDHAT-RHSA-2004-466.NASL", "DEBIAN_DSA-546.NASL", "MANDRAKE_MDKSA-2005-214.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:9996"]}, {"type": "debian", "idList": ["DEBIAN:DSA-546-1:2468D"]}, {"type": "openvas", "idList": ["OPENVAS:53237", "OPENVAS:54684"]}, {"type": "redhat", "idList": ["RHSA-2004:447", "RHSA-2004:466"]}, {"type": "gentoo", "idList": ["GLSA-200409-28"]}, {"type": "cert", "idList": ["VU:729894", "VU:825374"]}], "modified": "2019-02-21T01:08:06"}, "score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "objectVersion": "1.3", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-289.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14744);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-289\");\n\n script_name(english:\"Fedora Core 2 : gtk2-2.4.7-2.4 (2004-289)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000295.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7949bea8\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-debuginfo-2.4.7-2.4\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gtk2-devel-2.4.7-2.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "14744", "cpe": ["cpe:/o:fedoraproject:fedora_core:2", "p-cpe:/a:fedoraproject:fedora:gtk2", "p-cpe:/a:fedoraproject:fedora:gtk2-devel", "p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo"], "scheme": null}

{"cve": [{"lastseen": "2018-10-20T11:35:55", "bulletinFamily": "NVD", "description": "The BMP image processor for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted BMP file.", "modified": "2018-10-19T11:30:11", "published": "2004-10-20T00:00:00", "id": "CVE-2004-0753", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0753", "title": "CVE-2004-0753", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:05", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1011285\n[Secunia Advisory ID:12543](https://secuniaresearch.flexerasoftware.com/advisories/12543/)\n[Secunia Advisory ID:12615](https://secuniaresearch.flexerasoftware.com/advisories/12615/)\n[Secunia Advisory ID:12564](https://secuniaresearch.flexerasoftware.com/advisories/12564/)\n[Secunia Advisory ID:12568](https://secuniaresearch.flexerasoftware.com/advisories/12568/)\n[Secunia Advisory ID:12542](https://secuniaresearch.flexerasoftware.com/advisories/12542/)\n[Secunia Advisory ID:12548](https://secuniaresearch.flexerasoftware.com/advisories/12548/)\n[Secunia Advisory ID:12551](https://secuniaresearch.flexerasoftware.com/advisories/12551/)\n[Secunia Advisory ID:12545](https://secuniaresearch.flexerasoftware.com/advisories/12545/)\n[Secunia Advisory ID:12550](https://secuniaresearch.flexerasoftware.com/advisories/12550/)\n[Secunia Advisory ID:17657](https://secuniaresearch.flexerasoftware.com/advisories/17657/)\n[Related OSVDB ID: 9997](https://vulners.com/osvdb/OSVDB:9997)\n[Related OSVDB ID: 9999](https://vulners.com/osvdb/OSVDB:9999)\n[Related OSVDB ID: 9998](https://vulners.com/osvdb/OSVDB:9998)\nRedHat RHSA: RHSA-2004:466\nRedHat RHSA: RHSA-2004:447\nOther Advisory URL: http://bugzilla.gnome.org/show_bug.cgi?id=150601\nOther Advisory URL: http://security.gentoo.org/glsa/glsa-200409-28.xml\nOther Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095\nOther Advisory URL: http://www.debian.org/security/2004/dsa-546\nOther Advisory URL: http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:214\n[CVE-2004-0753](https://vulners.com/cve/CVE-2004-0753)\n", "modified": "2004-09-16T05:33:31", "published": "2004-09-16T05:33:31", "href": "https://vulners.com/osvdb/OSVDB:9996", "id": "OSVDB:9996", "type": "osvdb", "title": "GdkPixbuf BMP Processor DoS", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-07-19T00:00:00", "id": "FEDORA_2004-288.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14743", "published": "2004-09-15T00:00:00", "title": "Fedora Core 1 : gtk2-2.2.4-10 (2004-288)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-288.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14743);\n script_version (\"1.13\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\");\n script_xref(name:\"FEDORA\", value:\"2004-288\");\n\n script_name(english:\"Fedora Core 1 : gtk2-2.2.4-10 (2004-288)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000293.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9e7a99a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2, gtk2-debuginfo and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 1.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-2.2.4-10\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-debuginfo-2.2.4-10\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gtk2-devel-2.2.4-10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-debuginfo / gtk2-devel\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-07-19T00:00:00", "id": "FEDORA_2004-286.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14741", "published": "2004-09-15T00:00:00", "title": "Fedora Core 1 : gdk-pixbuf-0.22.0-11.2.2 (2004-286)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-286.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14741);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\");\n script_xref(name:\"FEDORA\", value:\"2004-286\");\n\n script_name(english:\"Fedora Core 1 : gdk-pixbuf-0.22.0-11.2.2 (2004-286)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000292.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e7ae414a\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 1.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-debuginfo-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.2\")) flag++;\nif (rpm_check(release:\"FC1\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-debuginfo / gdk-pixbuf-devel / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "During testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-07-19T00:00:00", "id": "FEDORA_2004-287.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14742", "published": "2004-09-15T00:00:00", "title": "Fedora Core 2 : gdk-pixbuf-0.22.0-11.2.3 (2004-287)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2004-287.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14742);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 23:19:04\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\");\n script_xref(name:\"FEDORA\", value:\"2004-287\");\n\n script_name(english:\"Fedora Core 2 : gdk-pixbuf-0.22.0-11.2.3 (2004-287)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora Core host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"During testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # https://lists.fedoraproject.org/pipermail/announce/2004-September/000294.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?4873ce3d\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora_core:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 2.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-debuginfo-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.3\")) flag++;\nif (rpm_check(release:\"FC2\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-debuginfo / gdk-pixbuf-devel / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "A vulnerability was found in the gdk-pixbug bmp loader where a bad BMP image could send the bmp loader into an infinite loop (CVE-2004-0753).\n\nChris Evans found a heap-based overflow and a stack-based overflow in the xpm loader of gdk-pixbuf (CVE-2004-0782 and CVE-2004-0783).\n\nChris Evans also discovered an integer overflow in the ico loader of gdk-pixbuf (CVE-2004-0788).\n\nAll four problems have been corrected in these updated packages.\n\nUpdate :\n\nThe previous package had an incorrect patch applied that would cause some problems with other programs. The updated packages have the correct patch applied.\n\nAs well, patched gtk+2 packages, which also contain gdk-pixbuf, are now provided.", "modified": "2018-07-19T00:00:00", "id": "MANDRAKE_MDKSA-2004-095.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14751", "published": "2004-09-16T00:00:00", "title": "Mandrake Linux Security Advisory : gdk-pixbuf/gtk+2 (MDKSA-2004:095-1)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2004:095. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14751);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/19 20:59:13\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"MDKSA\", value:\"2004:095-1\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gdk-pixbuf/gtk+2 (MDKSA-2004:095-1)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A vulnerability was found in the gdk-pixbug bmp loader where a bad BMP\nimage could send the bmp loader into an infinite loop (CVE-2004-0753).\n\nChris Evans found a heap-based overflow and a stack-based overflow in\nthe xpm loader of gdk-pixbuf (CVE-2004-0782 and CVE-2004-0783).\n\nChris Evans also discovered an integer overflow in the ico loader of\ngdk-pixbuf (CVE-2004-0788).\n\nAll four problems have been corrected in these updated packages.\n\nUpdate :\n\nThe previous package had an incorrect patch applied that would cause\nsome problems with other programs. The updated packages have the\ncorrect patch applied.\n\nAs well, patched gtk+2 packages, which also contain gdk-pixbuf, are\nnow provided.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gtk+2.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-linuxfb-2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-linuxfb-2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandrakesoft:mandrake_linux:9.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK10.0\", reference:\"gdk-pixbuf-loaders-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", reference:\"gtk+2.0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+-x11-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-2.2.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.2.4-10.1.100mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK9.2\", reference:\"gdk-pixbuf-loaders-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", reference:\"gtk+2.0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-linuxfb-2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+-x11-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"amd64\", reference:\"lib64gtk+2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-2.2.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-linuxfb-2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK9.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.2.4-2.1.92mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "Updated gdk-pixbuf packages that fix several security flaws are now available.\n\nThe gdk-pixbuf package contains an image loading library used with the GNOME GUI desktop environment.\n\n[Updated 15th September 2004] Packages have been updated to correct a bug which caused the xpm loader to fail.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gdk-pixbuf. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file is opened by a victim. (CVE-2004-0788)\n\nThese packages have also been updated to correct a bug which caused the xpm loader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which contain backported patches and are not vulnerable to these issues.", "modified": "2018-11-27T00:00:00", "id": "REDHAT-RHSA-2004-447.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14738", "published": "2004-09-15T00:00:00", "title": "RHEL 2.1 / 3 : gdk-pixbuf (RHSA-2004:447)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:447. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14738);\n script_version (\"1.24\");\n script_cvs_date(\"Date: 2018/11/27 13:31:31\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"RHSA\", value:\"2004:447\");\n\n script_name(english:\"RHEL 2.1 / 3 : gdk-pixbuf (RHSA-2004:447)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gdk-pixbuf packages that fix several security flaws are now\navailable.\n\nThe gdk-pixbuf package contains an image loading library used with the\nGNOME GUI desktop environment.\n\n[Updated 15th September 2004] Packages have been updated to correct a\nbug which caused the xpm loader to fail.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gdk-pixbuf. An\nattacker could create a carefully crafted BMP file which would cause\nan application to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file is\nopened by a victim. (CVE-2004-0788)\n\nThese packages have also been updated to correct a bug which caused\nthe xpm loader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which\ncontain backported patches and are not vulnerable to these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0753\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0782\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0783\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0788\"\n );\n # http://bugzilla.gnome.org/show_bug.cgi?id=150601\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2004:447\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected gdk-pixbuf, gdk-pixbuf-devel and / or\ngdk-pixbuf-gnome packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gdk-pixbuf-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(2\\.1|3)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1 / 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:447\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-0.22.0-11.2.2E\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-devel-0.22.0-11.2.2E\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"gdk-pixbuf-gnome-0.22.0-11.2.2E\")) flag++;\n\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-0.22.0-11.3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-devel-0.22.0-11.3.3\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gdk-pixbuf-gnome-0.22.0-11.3.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gdk-pixbuf / gdk-pixbuf-devel / gdk-pixbuf-gnome\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "Updated gtk2 packages that fix several security flaws and bugs are now available.\n\nThe gtk2 package contains the GIMP ToolKit (GTK+), a library for creating graphical user interfaces for the X Window System.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a flaw was discovered in the BMP image processor of gtk2. An attacker could create a carefully crafted BMP file which would cause an application to enter an infinite loop and not respond to user input when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow in the XPM image decoder. An attacker could create a carefully crafted XPM file which could cause an application linked with gtk2 to crash or possibly execute arbitrary code when the file was opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. An attacker could create a carefully crafted ICO file which could cause an application linked with gtk2 to crash when the file was opened by a victim. (CVE-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on various X servers, such as Hummingbird, ReflectionX, and X-Win32. If a server was configured to use the Swiss German, Swiss French, or France French keyboard layouts, Mode_Switched characters were unable to be entered within GTK based applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain backported patches and are not vulnerable to these issues.", "modified": "2018-11-27T00:00:00", "id": "REDHAT-RHSA-2004-466.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14734", "published": "2004-09-15T00:00:00", "title": "RHEL 3 : gtk2 (RHSA-2004:466)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2004:466. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14734);\n script_version (\"1.23\");\n script_cvs_date(\"Date: 2018/11/27 13:31:31\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"RHSA\", value:\"2004:466\");\n\n script_name(english:\"RHEL 3 : gtk2 (RHSA-2004:466)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gtk2 packages that fix several security flaws and bugs are now\navailable.\n\nThe gtk2 package contains the GIMP ToolKit (GTK+), a library for\ncreating graphical user interfaces for the X Window System.\n\nDuring testing of a previously fixed flaw in Qt (CVE-2004-0691), a\nflaw was discovered in the BMP image processor of gtk2. An attacker\ncould create a carefully crafted BMP file which would cause an\napplication to enter an infinite loop and not respond to user input\nwhen the file was opened by a victim. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CVE-2004-0753\nto this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap\noverflow in the XPM image decoder. An attacker could create a\ncarefully crafted XPM file which could cause an application linked\nwith gtk2 to crash or possibly execute arbitrary code when the file\nwas opened by a victim. (CVE-2004-0782, CVE-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image\ndecoder. An attacker could create a carefully crafted ICO file which\ncould cause an application linked with gtk2 to crash when the file was\nopened by a victim. (CVE-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on\nvarious X servers, such as Hummingbird, ReflectionX, and X-Win32. If a\nserver was configured to use the Swiss German, Swiss French, or France\nFrench keyboard layouts, Mode_Switched characters were unable to be\nentered within GTK based applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain\nbackported patches and are not vulnerable to these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0753\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0782\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0783\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2004-0788\"\n );\n # http://bugzilla.gnome.org/show_bug.cgi?id=150601\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n # http://bugzilla.gnome.org/show_bug.cgi?id=144808\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.gnome.org/show_bug.cgi?id=144808\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2004:466\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gtk2 and / or gtk2-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gtk2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gtk2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^3([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2004:466\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"gtk2-2.2.4-8.1\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"gtk2-devel-2.2.4-8.1\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gtk2 / gtk2-devel\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:06", "bulletinFamily": "scanner", "description": "The remote host is affected by the vulnerability described in GLSA-200409-28 (GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities)\n\n A vulnerability has been discovered in the BMP image preprocessor (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow in the pixbuf_create_from_xpm() function, resulting in a heap overflow (CAN-2004-0782). He also found a potential stack-based buffer overflow in the xpm_extract_color() function (CAN-2004-0783). A possible integer overflow has also been found in the ICO decoder.\n Impact :\n\n With a specially crafted BMP image an attacker could cause an affected application to enter an infinite loop when that image is being processed.\n Also, by making use of specially crafted XPM or ICO images an attacker could trigger the overflows, which potentially allows the execution of arbitrary code.\n Workaround :\n\n There is no known workaround at this time.", "modified": "2018-11-19T00:00:00", "id": "GENTOO_GLSA-200409-28.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=14791", "published": "2004-09-22T00:00:00", "title": "GLSA-200409-28 : GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200409-28.\n#\n# The advisory text is Copyright (C) 2001-2018 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(14791);\n script_version(\"1.16\");\n script_cvs_date(\"Date: 2018/11/19 11:02:41\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"GLSA\", value:\"200409-28\");\n\n script_name(english:\"GLSA-200409-28 : GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200409-28\n(GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities)\n\n A vulnerability has been discovered in the BMP image preprocessor\n (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow\n in the pixbuf_create_from_xpm() function, resulting in a heap overflow\n (CAN-2004-0782). He also found a potential stack-based buffer overflow in\n the xpm_extract_color() function (CAN-2004-0783). A possible integer\n overflow has also been found in the ICO decoder.\n \nImpact :\n\n With a specially crafted BMP image an attacker could cause an affected\n application to enter an infinite loop when that image is being processed.\n Also, by making use of specially crafted XPM or ICO images an attacker\n could trigger the overflows, which potentially allows the execution of\n arbitrary code.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n # http://bugzilla.gnome.org/show_bug.cgi?id=150601\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.gnome.org/show_bug.cgi?id=150601\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200409-28\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All GTK+ 2 users should upgrade to the latest version:\n # emerge sync\n # emerge -pv '>=x11-libs/gtk+-2.4.9-r1'\n # emerge '>=x11-libs/gtk+-2.4.9-r1'\n All GdkPixbuf users should upgrade to the latest version:\n # emerge sync\n # emerge -pv '>=media-libs/gdk-pixbuf-0.22.0-r3'\n # emerge '>=media-libs/gdk-pixbuf-0.22.0-r3'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:gtk+\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"media-libs/gdk-pixbuf\", unaffected:make_list(\"ge 0.22.0-r3\"), vulnerable:make_list(\"lt 0.22.0-r3\"))) flag++;\nif (qpkg_check(package:\"x11-libs/gtk+\", unaffected:make_list(\"ge 2.4.9-r1\", \"lt 2.0.0\"), vulnerable:make_list(\"lt 2.4.9-r1\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"GTK+ 2 / gdk-pixbuf\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:12", "bulletinFamily": "scanner", "description": "Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf library used in Gtk. It is possible for an attacker to execute arbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an external package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the following vulnerabilities :\n\n - CAN-2004-0753 Denial of service in bmp loader.\n\n - CAN-2004-0782\n\n Heap-based overflow in pixbuf_create_from_xpm.\n\n - CAN-2004-0788\n\n Integer overflow in the ico loader.", "modified": "2018-08-09T00:00:00", "id": "DEBIAN_DSA-546.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=15383", "published": "2004-09-29T00:00:00", "title": "Debian DSA-546-1 : gdk-pixbuf - several vulnerabilities", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-546. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(15383);\n script_version(\"1.23\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_xref(name:\"CERT\", value:\"577654\");\n script_xref(name:\"CERT\", value:\"729894\");\n script_xref(name:\"CERT\", value:\"825374\");\n script_xref(name:\"DSA\", value:\"546\");\n\n script_name(english:\"Debian DSA-546-1 : gdk-pixbuf - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf\nlibrary used in Gtk. It is possible for an attacker to execute\narbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an\nexternal package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the\nfollowing vulnerabilities :\n\n - CAN-2004-0753\n Denial of service in bmp loader.\n\n - CAN-2004-0782\n\n Heap-based overflow in pixbuf_create_from_xpm.\n\n - CAN-2004-0788\n\n Integer overflow in the ico loader.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2004/dsa-546\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the gdk-pixbuf packages.\n\nFor the stable distribution (woody) these problems have been fixed in\nversion 0.17.0-2woody2.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gdk-pixbuf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/09/29\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2004/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-dev\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-gnome-dev\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf-gnome2\", reference:\"0.17.0-2woody2\")) flag++;\nif (deb_check(release:\"3.0\", prefix:\"libgdk-pixbuf2\", reference:\"0.17.0-2woody2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:08:54", "bulletinFamily": "scanner", "description": "A heap overflow vulnerability in the GTK+ gdk-pixbuf XPM image rendering library could allow for arbitrary code execution. This allows an attacker to provide a carefully crafted XPM image which could possibly allow for arbitrary code execution in the context of the user viewing the image. (CVE-2005-3186)\n\nLudwig Nussel discovered an integer overflow bug in the way gdk-pixbuf processes XPM images. An attacker could create a carefully crafted XPM file in such a way that it could cause an application linked with gdk-pixbuf to execute arbitrary code or crash when the file was opened by a victim. (CVE-2005-2976)\n\nLudwig Nussel also discovered an infinite-loop denial of service bug in the way gdk-pixbuf processes XPM images. An attacker could create a carefully crafted XPM file in such a way that it could cause an application linked with gdk-pixbuf to stop responding when the file was opened by a victim. (CVE-2005-2975)\n\nThe gtk+2.0 library also contains the same gdk-pixbuf code with the same vulnerability.\n\nThe Corporate Server 2.1 packages have additional patches to address CVE-2004-0782,0783,0788 (additional XPM/ICO image issues), CVE-2004-0753 (BMP image issues) and CVE-2005-0891 (additional BMP issues). These were overlooked on this platform with earlier updates.\n\nThe updated packages have been patched to correct these issues.", "modified": "2018-07-19T00:00:00", "id": "MANDRAKE_MDKSA-2005-214.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=20446", "published": "2006-01-15T00:00:00", "title": "Mandrake Linux Security Advisory : gdk-pixbuf (MDKSA-2005:214)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2005:214. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(20446);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2018/07/19 20:59:13\");\n\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\", \"CVE-2005-0891\", \"CVE-2005-2975\", \"CVE-2005-2976\", \"CVE-2005-3186\");\n script_xref(name:\"MDKSA\", value:\"2005:214\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gdk-pixbuf (MDKSA-2005:214)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A heap overflow vulnerability in the GTK+ gdk-pixbuf XPM image\nrendering library could allow for arbitrary code execution. This\nallows an attacker to provide a carefully crafted XPM image which\ncould possibly allow for arbitrary code execution in the context of\nthe user viewing the image. (CVE-2005-3186)\n\nLudwig Nussel discovered an integer overflow bug in the way gdk-pixbuf\nprocesses XPM images. An attacker could create a carefully crafted XPM\nfile in such a way that it could cause an application linked with\ngdk-pixbuf to execute arbitrary code or crash when the file was opened\nby a victim. (CVE-2005-2976)\n\nLudwig Nussel also discovered an infinite-loop denial of service bug\nin the way gdk-pixbuf processes XPM images. An attacker could create a\ncarefully crafted XPM file in such a way that it could cause an\napplication linked with gdk-pixbuf to stop responding when the file\nwas opened by a victim. (CVE-2005-2975)\n\nThe gtk+2.0 library also contains the same gdk-pixbuf code with the\nsame vulnerability.\n\nThe Corporate Server 2.1 packages have additional patches to address\nCVE-2004-0782,0783,0788 (additional XPM/ICO image issues),\nCVE-2004-0753 (BMP image issues) and CVE-2005-0891 (additional BMP\nissues). These were overlooked on this platform with earlier updates.\n\nThe updated packages have been patched to correct these issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gdk-pixbuf-loaders\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gtk+2.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-gnomecanvas1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf-xlib2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk-pixbuf2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgdk_pixbuf2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+-x11-2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgtk+2.0_0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2006\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:mandrakesoft:mandrake_linux:le2005\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2005/11/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/01/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK10.2\", reference:\"gdk-pixbuf-loaders-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", reference:\"gtk+2.0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+-x11-2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-8.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK10.2\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.6.4-2.2.102mdk\", yank:\"mdk\")) flag++;\n\nif (rpm_check(release:\"MDK2006.0\", reference:\"gdk-pixbuf-loaders-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", reference:\"gtk+2.0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf-xlib2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk-pixbuf2-devel-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+-x11-2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gtk+2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf-xlib2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk-pixbuf2-devel-0.22.0-8.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+-x11-2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgtk+2.0_0-devel-2.8.3-4.2.20060mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2017-07-24T12:50:02", "bulletinFamily": "scanner", "description": "The remote host is missing an update to gdk-pixbuf\nannounced via advisory DSA 546-1.", "modified": "2017-07-07T00:00:00", "published": "2008-01-17T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=53237", "id": "OPENVAS:53237", "title": "Debian Security Advisory DSA 546-1 (gdk-pixbuf)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_546_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 546-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf\nlibrary used in Gtk. It is possible for an attacker to execute\narbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an\nexternal package. For Gtk+2.0 it's part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the\nfollowing vulnerabilities:\n\nCVE-2004-0753\n\nDenial of service in bmp loader.\n\nCVE-2004-0782\n\nHeap-based overflow in pixbuf_create_from_xpm.\n\nCVE-2004-0788\n\nInteger overflow in the ico loader.\n\nFor the stable distribution (woody) these problems have been fixed in\nversion 0.17.0-2woody2.\n\nFor the unstable distribution (sid) these problems have been fixed in\nversion 0.22.0-7.\n\nWe recommend that you upgrade your gdk-pixbuf packages.\";\ntag_summary = \"The remote host is missing an update to gdk-pixbuf\nannounced via advisory DSA 546-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20546-1\";\n\nif(description)\n{\n script_id(53237);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 22:45:44 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0788\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Debian Security Advisory DSA 546-1 (gdk-pixbuf)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-dev\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-gnome-dev\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf-gnome2\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgdk-pixbuf2\", ver:\"0.17.0-2woody2\", rls:\"DEB3.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:49:55", "bulletinFamily": "scanner", "description": "The remote host is missing updates announced in\nadvisory GLSA 200409-28.", "modified": "2017-07-07T00:00:00", "published": "2008-09-24T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=54684", "id": "OPENVAS:54684", "title": "Gentoo Security Advisory GLSA 200409-28 (gtk+)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The GdkPixbuf library, which is also included in GTK+ 2, contains several\nvulnerabilities that could lead to a Denial of Service or the execution of\narbitrary code.\";\ntag_solution = \"All GTK+ 2 users should upgrade to the latest version:\n\n # emerge sync\n\n # emerge -pv '>=x11-libs/gtk+-2.4.9-r1'\n # emerge '>=x11-libs/gtk+-2.4.9-r1'\n\nAll GdkPixbuf users should upgrade to the latest version:\n\n # emerge sync\n\n # emerge -pv '>=media-libs/gdk-pixbuf-0.22.0-r3'\n # emerge '>=media-libs/gdk-pixbuf-0.22.0-r3'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200409-28\nhttp://bugs.gentoo.org/show_bug.cgi?id=64230\nhttp://bugzilla.gnome.org/show_bug.cgi?id=150601\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200409-28.\";\n\n \n\nif(description)\n{\n script_id(54684);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2004-0753\", \"CVE-2004-0782\", \"CVE-2004-0783\", \"CVE-2004-0788\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200409-28 (gtk+)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"x11-libs/gtk+\", unaffected: make_list(\"ge 2.4.9-r1\", \"lt 2.0.0\"), vulnerable: make_list(\"lt 2.4.9-r1\"))) != NULL) {\n report += res;\n}\nif ((res = ispkgvuln(pkg:\"media-libs/gdk-pixbuf\", unaffected: make_list(\"ge 0.22.0-r3\"), vulnerable: make_list(\"lt 0.22.0-r3\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-16T22:14:26", "bulletinFamily": "unix", "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 546-1 security@debian.org\nhttp://www.debian.org/security/ Martin Schulze\nSeptember 16th, 2004 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : gdk-pixbuf\nVulnerability : several\nProblem-Type : remote\nDebian-specific: no\nCVE ID : CAN-2004-0753 CAN-2004-0782 CAN-2004-0788\n\nChris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf\nlibrary used in Gtk. It is possible for an attacker to execute\narbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an\nexternal package. For Gtk+2.0 it&#x27;s part of the main gtk package.\n\nThe Common Vulnerabilities and Exposures Project identifies the\nfollowing vulnerabilities:\n\nCAN-2004-0753\n\n Denial of service in bmp loader.\n\nCAN-2004-0782\n\n Heap-based overflow in pixbuf_create_from_xpm.\n\nCAN-2004-0788\n\n Integer overflow in the ico loader.\n\nFor the stable distribution (woody) these problems have been fixed in\nversion 0.17.0-2woody2.\n\nFor the unstable distribution (sid) these problems have been fixed in\nversion 0.22.0-7.\n\nWe recommend that you upgrade your gdk-pixbuf packages.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.0 alias woody\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0-2woody2.dsc\n Size/MD5 checksum: 706 3cc56516d717be2ce80caf00a7801748\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0-2woody2.diff.gz\n Size/MD5 checksum: 19285 a5a7762e36a8b172f9e66709ec23adcd\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0.orig.tar.gz\n Size/MD5 checksum: 547194 021914ad9104f265527c28220315e542\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_alpha.deb\n Size/MD5 checksum: 177060 279cbc10c636658467f3f0399aa143b7\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_alpha.deb\n Size/MD5 checksum: 9722 43600435d5bc6aab0613544693151248\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_alpha.deb\n Size/MD5 checksum: 8874 81163f83dd6375b295bcd080293b508a\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_alpha.deb\n Size/MD5 checksum: 193636 7f2f524d42131e607ee0fdf7eab21c8e\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_arm.deb\n Size/MD5 checksum: 156888 247743e5c98c50c236fe8881d525a9e2\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_arm.deb\n Size/MD5 checksum: 8142 5763a1963ad9544d4e6825eaa5787047\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_arm.deb\n Size/MD5 checksum: 7288 e7dddce3c14109a08b6bcd1ca2b7495c\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_arm.deb\n Size/MD5 checksum: 161318 79938be443732c5f7add7c54984c8771\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_i386.deb\n Size/MD5 checksum: 147634 a8acb10f8485d0f46257a06a8a07bb45\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_i386.deb\n Size/MD5 checksum: 7602 2ce52283726d0ac94f4db8075eec6f24\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_i386.deb\n Size/MD5 checksum: 7146 a0cf92a722c6125c2c4de312f25283e9\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_i386.deb\n Size/MD5 checksum: 151454 83e9903d762952eb4f37a8894db27113\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_ia64.deb\n Size/MD5 checksum: 194964 5bcf490f3b65cbe85f25fedda3ad9bca\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_ia64.deb\n Size/MD5 checksum: 11016 c43a72253d262d345fe18a6af37a8463\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_ia64.deb\n Size/MD5 checksum: 11070 e9a001c2709caa51b8093942711647e4\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_ia64.deb\n Size/MD5 checksum: 229470 ed2b1e4cb830bf7b6518580560e948cf\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_hppa.deb\n Size/MD5 checksum: 181318 1be47304016ae08cb2aaf874a1c23595\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_hppa.deb\n Size/MD5 checksum: 9638 5eb751003626768ca9c5162a6c956748\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_hppa.deb\n Size/MD5 checksum: 9314 cbe69c3c2aa9f111f225da90b1f88142\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_hppa.deb\n Size/MD5 checksum: 189910 2d63ccaa4567281505319e570eb28052\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_m68k.deb\n Size/MD5 checksum: 142148 2b56601acbdbe62447a0b8222f04f32d\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_m68k.deb\n Size/MD5 checksum: 7308 f105f85118d7d2e7e64beb15f1edfd3a\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_m68k.deb\n Size/MD5 checksum: 7030 c99be5492c71c4b06ec47a0e131f910d\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_m68k.deb\n Size/MD5 checksum: 156408 5f844e43fb3645802a9cf0848e929074\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_mips.deb\n Size/MD5 checksum: 167560 8cc8f41bbe9b5e8bc5a16fd4bd2355e9\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mips.deb\n Size/MD5 checksum: 9566 996c4d6ba55b275f67e129312775866f\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_mips.deb\n Size/MD5 checksum: 8270 b7ceb187fdb72c6d2f9190c4e1ac6803\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_mips.deb\n Size/MD5 checksum: 165278 247d7804a0d275c9f06b6a70fba5c990\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_mipsel.deb\n Size/MD5 checksum: 168116 fff2704f2ab052b09c6efe885fc4ac9b\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mipsel.deb\n Size/MD5 checksum: 9482 915611160e8c6e7b56a63b405705e2cc\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_mipsel.deb\n Size/MD5 checksum: 8122 cedb46e7c6949508455b4e2cf6d2ab64\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_mipsel.deb\n Size/MD5 checksum: 165452 95ef85acba0495ea804dbceaa3d194f9\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_powerpc.deb\n Size/MD5 checksum: 166110 76dfd7b42b1f2980a888505461b1fba5\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_powerpc.deb\n Size/MD5 checksum: 9248 b6979133bf009a1b34ef00407546563c\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_powerpc.deb\n Size/MD5 checksum: 8072 1dc256cb98fcef2f2fe66d887dbe3f1d\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_powerpc.deb\n Size/MD5 checksum: 171118 f75945d7015087d7671512d7c843889c\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_s390.deb\n Size/MD5 checksum: 153494 02968dda9991f11e736a8f67ab31041f\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_s390.deb\n Size/MD5 checksum: 7858 2fede104ce269e4c2c7d86f18368a181\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_s390.deb\n Size/MD5 checksum: 7564 626a7c5fa143002b72930b08d0259b8f\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_s390.deb\n Size/MD5 checksum: 167354 abd0019162d198d1e6485a8661cc17c9\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_sparc.deb\n Size/MD5 checksum: 161154 64d01e6702c95b8dec9e21e9cd846527\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_sparc.deb\n Size/MD5 checksum: 8270 45fcd5861d90a258b715ed7ad8458bab\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_sparc.deb\n Size/MD5 checksum: 7502 04cd802ed9d51e1889a3200bd28990ca\n http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_sparc.deb\n Size/MD5 checksum: 167018 b1009ca14d8ef9f42a6568d6ac7f3e81\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show &lt;pkg&gt;&#x27; and http://packages.debian.org/&lt;pkg&gt;\n\n", "modified": "2004-09-16T00:00:00", "published": "2004-09-16T00:00:00", "id": "DEBIAN:DSA-546-1:2468D", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2004/msg00153.html", "title": "[SECURITY] [DSA 546-1] New gdk-pixbuf packages fix several vulnerabilities", "type": "debian", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cert": [{"lastseen": "2019-05-01T19:52:12", "bulletinFamily": "info", "description": "### Overview \n\nA heap overflow vulnerability exists in the XPM handling of GdkPixbuf. This vulnerability can lead to a denial-of-service condition or execution of arbitrary code.\n\n### Description \n\n[GdkPixbuf](<http://developer.gnome.org/arch/imaging/gdkpixbuf.html>) is a library used by [GTK+ 2](<http://www.gtk.org/>) for loading and rendering images. GTK+ is a multi-platform toolkit for creating graphical user interfaces. It is used by the [Gnome](<http://www.gnome.org/>) desktop and other applications. GdkPixbuf contains a heap overflow vulnerability in the `pixbuf_create_from_xpm()` function of the XPM loading routine. \n \n--- \n \n### Impact \n\nBy convincing the user to open a specially crafted XPM file, an attacker could cause a denial of service by crashing the application that uses GdkPixbuf. It may also be possible to execute arbitrary code with the permissions of that application. \n \n--- \n \n### Solution \n\n**Apply a patch from your vendor**\n\nFor vendor-specific information regarding vulnerable status and patch availability, please see the vendor section of this document. \n \n**Upgrade your version of gtk+** \n \nUpgrade your system as specified by your vendor. If you need to compile the software from the original source, get [gtk+ 2.4.10](<http://www.gtk.org/download/>). \n \n--- \n \n### Vendor Information\n\n729894\n\nFilter by status: All Affected Not Affected Unknown\n\nFilter by content: __ Vendor has issued information\n\n__ Sort by: Status Alphabetical\n\nExpand all\n\n__ Affected __ Unknown __ Unaffected \n\n**Javascript is disabled. Click here to view vendors.**\n\n### __ __ Debian\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Vulnerable\n\n### Vendor Statement\n\nThe stable Debian distribution (3.0 alias woody) is vulnerable to \nseveral of these problems. The matrix below explains which version \nfixes which problem.` \n \n| Gtk+2.0 gdk-pixbuf \n------------------------+------------------------------------ \nVU#825374 CAN-2004-0753 | not vuln 0.17.0-2woody2 \nVU#729894 CAN-2004-0782 | 2.0.2-5woody2 0.17.0-2woody2 \nVU#369358 CAN-2004-0783 | 2.0.2-5woody2 not vuln \nVU#577654 CAN-2004-0788 | 2.0.2-5woody2 0.17.0-2woody2 \n \n`For the unstable distribution (sid) these problems have been fixed in \nversion 0.22.0-7 of gdk-pixbuf, and will be fixed soon in Gtk+2.0.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ __ SuSE Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Vulnerable\n\n### Vendor Statement\n\nupdated gtk2, gdk-pixbuf packages were already released. \nThese packages do not contain fixes for the remote denial-of-service \nbug referenced by VU#825374 and CAN-2004-0753. This bug will be \nfixed as soon as possible. \n \nOur customers can update their systems by using the \nYaST Online Update (YOU) tool or installing the RPM \nfile directly from <http://www.suse.de/en/private/download/updates/>\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ __ Apple Computer Inc.\n\nNotified: September 17, 2004 Updated: January 31, 2005 \n\n### Status\n\n__ Not Vulnerable\n\n### Vendor Statement\n\nMac OS X and Mac OS X Server do not contain the software described in this vulnerability note.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ __ Hitachi\n\nNotified: September 17, 2004 Updated: September 28, 2004 \n\n### Status\n\n__ Not Vulnerable\n\n### Vendor Statement\n\nHI-UX/WE2 is NOT Vulnerable to this issue.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ BSDI\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Conectiva\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Cray Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ EMC Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Engarde\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ FreeBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Fujitsu\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Hewlett-Packard Company\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ IBM\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ IBM eServer\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ IBM-zSeries\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Immunix\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Ingrian Networks\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Juniper Networks\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ MandrakeSoft\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ MontaVista Software\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ NEC Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ NETBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Nokia\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Novell\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ OpenBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Openwall GNU/*/Linux\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Redhat\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ SCO\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ SGI\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Sequent\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Sony Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Sun Microsystems Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ TurboLinux\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Unisys\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\n### __ Wind River Systems Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23729894 Feedback>).\n\nView all 35 vendors __View less vendors __\n\n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | | N/A \n \n \n\n\n### References \n\n * <http://secunia.com/advisories/12542/>\n * <http://www.securitytracker.com/alerts/2004/Sep/1011285.html>\n * <http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095>\n * <https://rhn.redhat.com/errata/RHSA-2004-447.html>\n\n### Acknowledgements\n\nThanks to Chris Evans for reporting this vulnerability. \n\nThis document was written by Will Dormann. \n\n### Other Information\n\n**CVE IDs:** | [CVE-2004-0782](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0782>) \n---|--- \n**Severity Metric:****** | 8.86 \n**Date Public:** | 2004-09-15 \n**Date First Published:** | 2004-10-01 \n**Date Last Updated: ** | 2004-11-01 20:26 UTC \n**Document Revision: ** | 9 \n", "modified": "2004-11-01T20:26:00", "published": "2004-10-01T00:00:00", "id": "VU:729894", "href": "https://www.kb.cert.org/vuls/id/729894", "type": "cert", "title": "GdkPixbuf XPM parser contains a heap overflow vulnerability", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-01T19:52:13", "bulletinFamily": "info", "description": "### Overview \n\nA vulnerability exists in the BMP handling of GdkPixbuf. This vulnerability can lead to a denial-of-service condition.\n\n### Description \n\n[GdkPixbuf](<http://developer.gnome.org/arch/imaging/gdkpixbuf.html>) is a library used by [GTK+ 2](<http://www.gtk.org/>) for loading and rendering images. GTK+ is a multi-platform toolkit for creating graphical user interfaces. It is used by the [Gnome](<http://www.gnome.org/>) desktop and other applications. GdkPixbuf contains a heap overflow vulnerability in the `DoCompressed()` function of the BMP loading routine. \n \n--- \n \n### Impact \n\nBy convincing the user to open a specially crafted BMP file, an attacker could cause a denial of service by crashing the application that uses GdkPixbuf. \n \n--- \n \n### Solution \n\n**Apply a patch from your vendor**\n\nFor vendor-specific information regarding vulnerable status and patch availability, please see the vendor section of this document. \n \n**Upgrade your version of gtk+** \n \nUpgrade your system as specified by your vendor. If you need to compile the software from the original source, get [gtk+ 2.4.10](<http://www.gtk.org/download/>). \n \n--- \n \n### Vendor Information\n\n825374\n\nFilter by status: All Affected Not Affected Unknown\n\nFilter by content: __ Vendor has issued information\n\n__ Sort by: Status Alphabetical\n\nExpand all\n\n__ Affected __ Unknown __ Unaffected \n\n**Javascript is disabled. Click here to view vendors.**\n\n### __ __ Debian\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Vulnerable\n\n### Vendor Statement\n\nThe stable Debian distribution (3.0 alias woody) is vulnerable to\n\nseveral of these problems. The matrix below explains which version \nfixes which problem. \n \n` | Gtk+2.0 gdk-pixbuf` \n`------------------------+------------------------------------` \n`VU#825374 CAN-2004-0753 | not vuln 0.17.0-2woody2` \n`VU#729894 CAN-2004-0782 | 2.0.2-5woody2 0.17.0-2woody2` \n`VU#369358 CAN-2004-0783 | 2.0.2-5woody2 not vuln` \n`VU#577654 CAN-2004-0788 | 2.0.2-5woody2 0.17.0-2woody2` \n \nFor the unstable distribution (sid) these problems have been fixed in \nversion 0.22.0-7 of gdk-pixbuf, and will be fixed soon in Gtk+2.0.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ __ SuSE Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Vulnerable\n\n### Vendor Statement\n\nupdated gtk2, gdk-pixbuf packages were already released. \nThese packages do not contain fixes for the remote denial-of-service \nbug referenced by VU#825374 and CAN-2004-0753. This bug will be \nfixed as soon as possible. \n \nOur customers can update their systems by using the \nYaST Online Update (YOU) tool or installing the RPM \nfile directly from <http://www.suse.de/en/private/download/updates/>\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ __ Apple Computer Inc.\n\nNotified: September 17, 2004 Updated: January 31, 2005 \n\n### Status\n\n__ Not Vulnerable\n\n### Vendor Statement\n\nMac OS X and Mac OS X Server do not contain the software described in this vulnerability note.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ __ Hitachi\n\nNotified: September 17, 2004 Updated: September 28, 2004 \n\n### Status\n\n__ Not Vulnerable\n\n### Vendor Statement\n\nHI-UX/WE2 is NOT Vulnerable to this issue.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ BSDI\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Conectiva\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Cray Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ EMC Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Engarde\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ FreeBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Fujitsu\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Hewlett-Packard Company\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ IBM\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ IBM eServer\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ IBM-zSeries\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Immunix\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Ingrian Networks\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Juniper Networks\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ MandrakeSoft\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ MontaVista Software\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ NEC Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ NETBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Nokia\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Novell\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ OpenBSD\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Openwall GNU/*/Linux\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Red Hat Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ SCO\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ SGI\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Sequent\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Sony Corporation\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Sun Microsystems Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ TurboLinux\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Unisys\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\n### __ Wind River Systems Inc.\n\nNotified: September 17, 2004 Updated: September 20, 2004 \n\n### Status\n\n__ Unknown\n\n### Vendor Statement\n\nNo statement is currently available from the vendor regarding this vulnerability.\n\n### Vendor Information\n\nThe vendor has not provided us with any further information regarding this vulnerability.\n\n### Addendum\n\nWe have no additional comments at this time.\n\nIf you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:cert@cert.org?Subject=VU%23825374 Feedback>).\n\nView all 35 vendors __View less vendors __\n\n \n\n\n### CVSS Metrics \n\nGroup | Score | Vector \n---|---|--- \nBase | N/A | N/A \nTemporal | N/A | N/A \nEnvironmental | | N/A \n \n \n\n\n### References \n\n * <http://secunia.com/advisories/12542/>\n * <http://www.securitytracker.com/alerts/2004/Sep/1011285.html>\n * <http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:095>\n * <https://rhn.redhat.com/errata/RHSA-2004-447.html>\n\n### Acknowledgements\n\nThis vulnerability was reported by the Red Hat Security Response Team. \n\nThis document was written by Will Dormann. \n\n### Other Information\n\n**CVE IDs:** | [CVE-2004-0753](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0753>) \n---|--- \n**Severity Metric:****** | 1.77 \n**Date Public:** | 2004-09-15 \n**Date First Published:** | 2004-10-01 \n**Date Last Updated: ** | 2004-11-02 16:27 UTC \n**Document Revision: ** | 11 \n", "modified": "2004-11-02T16:27:00", "published": "2004-10-01T00:00:00", "id": "VU:825374", "href": "https://www.kb.cert.org/vuls/id/825374", "type": "cert", "title": "GdkPixbuf BMP parser may enter an infinite loop", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2019-03-22T21:14:15", "bulletinFamily": "unix", "description": "The gdk-pixbuf package contains an image loading library used with the\nGNOME GUI desktop environment.\n\n[Updated 15th September 2004]\nPackages have been updated to correct a bug which caused the xpm loader\nto fail.\n\nDuring testing of a previously fixed flaw in Qt (CAN-2004-0691), a flaw was\ndiscovered in the BMP image processor of gdk-pixbuf. An attacker could\ncreate a carefully crafted BMP file which would cause an application\nto enter an infinite loop and not respond to user input when the file was\nopened by a victim. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2004-0753 to this issue.\n\nDuring a security audit, Chris Evans discovered a stack and a heap overflow\nin the XPM image decoder. An attacker could create a carefully crafted XPM\nfile which could cause an application linked with gtk2 to crash or possibly\nexecute arbitrary code when the file was opened by a victim.\n(CAN-2004-0782, CAN-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder.\nAn attacker could create a carefully crafted ICO file which could cause an\napplication linked with gtk2 to crash when the file is opened by a victim.\n(CAN-2004-0788)\n\nThese packages have also been updated to correct a bug which caused the xpm\nloader to fail.\n\nUsers of gdk-pixbuf are advised to upgrade to these packages, which\ncontain backported patches and are not vulnerable to these issues.", "modified": "2019-03-22T23:43:31", "published": "2004-09-15T04:00:00", "id": "RHSA-2004:447", "href": "https://access.redhat.com/errata/RHSA-2004:447", "type": "redhat", "title": "(RHSA-2004:447) gdk-pixbuf security update", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:45:57", "bulletinFamily": "unix", "description": "The gtk2 package contains the GIMP ToolKit (GTK+), a library for creating\ngraphical user interfaces for the X Window System. \n\nDuring testing of a previously fixed flaw in Qt (CAN-2004-0691), a flaw was\ndiscovered in the BMP image processor of gtk2. An attacker could create a\ncarefully crafted BMP file which would cause an application to enter an\ninfinite loop and not respond to user input when the file was opened by a\nvictim. The Common Vulnerabilities and Exposures project (cve.mitre.org)\nhas assigned the name CAN-2004-0753 to this issue.\n\nDuring a security audit Chris Evans discovered a stack and a heap overflow\nin the XPM image decoder. An attacker could create a carefully crafted XPM\nfile which could cause an application linked with gtk2 to crash or possibly\nexecute arbitrary code when the file was opened by a victim. \n(CAN-2004-0782, CAN-2004-0783)\n\nChris Evans also discovered an integer overflow in the ICO image decoder. \nAn attacker could create a carefully crafted ICO file which could cause an\napplication linked with gtk2 to crash when the file was opened by a victim.\n(CAN-2004-0788)\n\nThis updated gtk2 package also fixes a few key combination bugs on various\nX servers, such as Hummingbird, ReflectionX, and X-Win32. If a server was\nconfigured to use the Swiss German, Swiss French, or France French keyboard\nlayouts, Mode_Switched characters were unable to be entered within GTK\nbased applications.\n\nUsers of gtk2 are advised to upgrade to these packages which contain\nbackported patches and are not vulnerable to these issues.", "modified": "2017-07-29T20:33:24", "published": "2004-09-15T04:00:00", "id": "RHSA-2004:466", "href": "https://access.redhat.com/errata/RHSA-2004:466", "type": "redhat", "title": "(RHSA-2004:466) gtk2 security update", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:45:59", "bulletinFamily": "unix", "description": "### Background\n\nGTK+ (GIMP Toolkit +) is a toolkit for creating graphical user interfaces. The GdkPixbuf library provides facilities for image handling. It is available as a standalone library as well as shipped with GTK+ 2. \n\n### Description\n\nA vulnerability has been discovered in the BMP image preprocessor (CAN-2004-0753). Furthermore, Chris Evans found a possible integer overflow in the pixbuf_create_from_xpm() function, resulting in a heap overflow (CAN-2004-0782). He also found a potential stack-based buffer overflow in the xpm_extract_color() function (CAN-2004-0783). A possible integer overflow has also been found in the ICO decoder. \n\n### Impact\n\nWith a specially crafted BMP image an attacker could cause an affected application to enter an infinite loop when that image is being processed. Also, by making use of specially crafted XPM or ICO images an attacker could trigger the overflows, which potentially allows the execution of arbitrary code. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll GTK+ 2 users should upgrade to the latest version: \n \n \n # emerge sync\n \n # emerge -pv \">=x11-libs/gtk+-2.4.9-r1\"\n # emerge \">=x11-libs/gtk+-2.4.9-r1\"\n\nAll GdkPixbuf users should upgrade to the latest version: \n \n \n # emerge sync\n \n # emerge -pv \">=media-libs/gdk-pixbuf-0.22.0-r3\"\n # emerge \">=media-libs/gdk-pixbuf-0.22.0-r3\"", "modified": "2004-09-21T00:00:00", "published": "2004-09-21T00:00:00", "id": "GLSA-200409-28", "href": "https://security.gentoo.org/glsa/200409-28", "type": "gentoo", "title": "GTK+ 2, gdk-pixbuf: Multiple image decoding vulnerabilities", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}