[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1100-1] gdk-pixbuf security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : gdk-pixbuf
Version        : 2.26.1-1+deb7u6
CVE ID         : CVE-2017-2862
Debian Bug     : 874552

Marcin Noga discovered a buffer overflow in the JPEG loader of the GDK
Pixbuf library, which may result in the execution of arbitrary code if
a malformed file is opened.

For Debian 7 "Wheezy", these problems have been fixed in version
2.26.1-1+deb7u6.

We recommend that you upgrade your gdk-pixbuf packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=qu6i
-----END PGP SIGNATURE-----
Reply to: