AVG-2

Package gdk-pixbuf2
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 2.34.0-2
Fixed 2.36.0+2+ga7c869a-1
Current 2.36.12-1 [extra]
Ticket None
Created Sun Sep 18 15:55:09 2016
Issue Severity Remote Type Description
CVE-2016-6352 Critical Yes Arbitrary code execution
An out-of-bounds write has been discovered in the OneLine32() function while parsing an ico file. A maliciously crafted file can cause the application to...
Date Advisory Package Description
13 Oct 2016 ASA-201610-9 gdk-pixbuf2 arbitrary code execution
References
https://bugzilla.gnome.org/show_bug.cgi?id=769170
Notes
Fixed in upstreadm version 2.35.3