blob: f968684a8a0a145fc810643413b6abbd44d98831 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>Gustavo Grieco discovered different security issues in Gtk+2.0's
gdk-pixbuf.</p>
<ul>
<li><a href="https://security-tracker.debian.org/tracker/CVE-2015-4491">CVE-2015-4491</a>
<p>Heap overflow when processing BMP images which may allow to execute
of arbitrary code via malformed images.</p></li>
<li><a href="https://security-tracker.debian.org/tracker/CVE-2015-7673">CVE-2015-7673</a>
<p>Heap overflow when processing TGA images which may allow execute
arbitrary code or denial of service (process crash) via malformed
images.</p></li>
<li><a href="https://security-tracker.debian.org/tracker/CVE-2015-7674">CVE-2015-7674</a>
<p>Integer overflow when processing GIF images which may allow to
execute arbitrary code or denial of service (process crash) via
malformed image.</p></li>
</ul>
<p>For Debian 6 <q>Squeeze</q>, these issues have been fixed in gtk+2.0 version
2.20.1-2+deb6u2. We recommend you to upgrade your gtk+2.0 packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2016/dla-434.data"
# $Id$
|
