Vulnerability Note VU#729894

GdkPixbuf XPM parser contains a heap overflow vulnerability

Original Release date: 01 Oct 2004 | Last revised: 01 Nov 2004

Overview

A heap overflow vulnerability exists in the XPM handling of GdkPixbuf. This vulnerability can lead to a denial-of-service condition or execution of arbitrary code.

Description

GdkPixbuf is a library used by GTK+ 2 for loading and rendering images. GTK+ is a multi-platform toolkit for creating graphical user interfaces. It is used by the Gnome desktop and other applications. GdkPixbuf contains a heap overflow vulnerability in the pixbuf_create_from_xpm() function of the XPM loading routine.

Impact

By convincing the user to open a specially crafted XPM file, an attacker could cause a denial of service by crashing the application that uses GdkPixbuf. It may also be possible to execute arbitrary code with the permissions of that application.

Solution

Apply a patch from your vendor

For vendor-specific information regarding vulnerable status and patch availability, please see the vendor section of this document.

Upgrade your version of gtk+

Upgrade your system as specified by your vendor. If you need to compile the software from the original source, get gtk+ 2.4.10.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
DebianAffected17 Sep 200420 Sep 2004
SuSE Inc.Affected17 Sep 200420 Sep 2004
Apple Computer Inc.Not Affected17 Sep 200431 Jan 2005
HitachiNot Affected17 Sep 200428 Sep 2004
BSDIUnknown17 Sep 200420 Sep 2004
ConectivaUnknown17 Sep 200420 Sep 2004
Cray Inc.Unknown17 Sep 200420 Sep 2004
EMC CorporationUnknown17 Sep 200420 Sep 2004
EngardeUnknown17 Sep 200420 Sep 2004
FreeBSDUnknown17 Sep 200420 Sep 2004
FujitsuUnknown17 Sep 200420 Sep 2004
Hewlett-Packard CompanyUnknown17 Sep 200420 Sep 2004
IBMUnknown17 Sep 200420 Sep 2004
IBM-zSeriesUnknown17 Sep 200420 Sep 2004
IBM eServerUnknown17 Sep 200420 Sep 2004
If you are a vendor and your product is affected, let us know.View More »

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

Thanks to Chris Evans for reporting this vulnerability.

This document was written by Will Dormann.

Other Information

  • CVE IDs: CAN-2004-0782
  • Date Public: 15 Sep 2004
  • Date First Published: 01 Oct 2004
  • Date Last Updated: 01 Nov 2004
  • Severity Metric: 8.86
  • Document Revision: 9

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.