USN-2898-1: GTK+ vulnerability

🗓️ 15 Feb 2016 18:20:17Reported by UbuntuType

ubuntu

ubuntu🔗 ubuntu.com👁 58 Views

GTK+ vulnerability in Ubuntu 15.10, 14.04 ESM, 12.04

Reporter	Title	Published	Views	Family All 66
CNVD	GTK+ Integer Overflow Vulnerability	23 Feb 201600:00	–	cnvd
CVE	CVE-2013-7447	17 Feb 201615:00	–	cve
Cvelist	CVE-2013-7447	17 Feb 201615:00	–	cvelist
Debian	[SECURITY] [DLA 419-1] gtk+2.0 security update	17 Feb 201610:21	–	debian
Debian CVE	CVE-2013-7447	17 Feb 201615:00	–	debiancve
Tenable Nessus	Debian DLA-419-1 : gtk+2.0 security update	18 Feb 201600:00	–	nessus
Tenable Nessus	Fedora 23 : gnome-photos-3.18.3-1.fc23 (2016-330bfc0338)	22 Mar 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : gtk2 (openSUSE-2016-1117)	26 Sep 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : gtk2 (openSUSE-2016-1118)	26 Sep 201600:00	–	nessus
Tenable Nessus	openSUSE Security Update : eog (openSUSE-2016-296)	4 Mar 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	14.04	any	gir1.2-gtk-2.0	2.24.23-0ubuntu1.4	gir1.2-gtk-2.0_2.24.23-0ubuntu1.4_any.deb
Ubuntu	12.04	any	libgtk-3-0	3.4.2-0ubuntu0.9	libgtk-3-0_3.4.2-0ubuntu0.9_any.deb
Ubuntu	12.04	any	libgtk2.0-0	2.24.10-0ubuntu6.3	libgtk2.0-0_2.24.10-0ubuntu6.3_any.deb
Ubuntu	15.10	any	libgtk2.0-0	2.24.28-1ubuntu1.1	libgtk2.0-0_2.24.28-1ubuntu1.1_any.deb

15 Feb 2016 18:20Current

7High risk

Vulners AI Score7

CVSS 24.3

CVSS 36.5

EPSS0.04428

gtk+ubuntu large images denial of service arbitrary code remote attack graphical user interface library