Debian Long Term Support / LTS Security Information / 2018 / Security Information -- DLA-1234-1 gdk-pixbuf

Debian Security Advisory

DLA-1234-1 gdk-pixbuf -- LTS security update

Date Reported:

08 Jan 2018

Affected Packages:

gdk-pixbuf

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2017-1000422.

More information:

It was discovered that there were several integer overflows in gdk-pixbuf, a library to manipulate images for the GTK graphics toolkit. This could have led to memory corruption and potential code execution.

For Debian 7 Wheezy, this issue has been fixed in gdk-pixbuf version 2.26.1-1+deb7u7.

We recommend that you upgrade your gdk-pixbuf packages.