8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:P/I:P/A:C
0.003 Low
EPSS
Percentile
65.6%
gdk-pixbuf is vulnerable to denial of service. The vulnerability exists due to an out of bounds write when an attack loads a crafted image.
CPE | Name | Operator | Version |
---|---|---|---|
gdk-pixbuf:3.11 | eq | 2.40.0-r0 | |
gdk-pixbuf:3.12 | eq | 2.40.0-r2 | |
gdk-pixbuf:3.11 | eq | 2.40.0-r0 | |
gdk-pixbuf:3.12 | eq | 2.40.0-r2 |
bugzilla.redhat.com/show_bug.cgi?id=1926787
lists.fedoraproject.org/archives/list/[email protected]/message/B5H3GNVWMZTYZR3JBYCK57PF7PFMQBNP/
lists.fedoraproject.org/archives/list/[email protected]/message/BGZVCTH5O7WBJLYXZ2UOKLYNIFPVR55D/
lists.fedoraproject.org/archives/list/[email protected]/message/EANWYODLOJDFLMBH6WEKJJMQ5PKLEWML/
secdb.alpinelinux.org/v3.11/main.yaml
secdb.alpinelinux.org/v3.12/main.yaml
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:P/I:P/A:C
0.003 Low
EPSS
Percentile
65.6%