Security update for gdk-pixbuf SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:2195-2 Final 1 1 2015-12-23T13:20:49Z current 2015-12-23T13:20:49Z 2015-12-23T13:20:49Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gdk-pixbuf The gdk pixbuf library was updated to fix three security issues. These security issues were fixed: - CVE-2015-7673: Fix some more overflows scaling a gif (bsc#948791) - CVE-2015-4491: Check for overflow before allocating memory when scaling (bsc#942801) - CVE-2015-7673: Fix an overflow and DoS when scaling TGA files (bsc#948790). - CVE-2015-7674: Fix overflow when scaling GIF files(bsc#948791). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP1-2015-946,SUSE-SLE-SDK-12-SP1-2015-946,SUSE-SLE-SERVER-12-SP1-2015-946 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20152195-2/ Link for SUSE-SU-2015:2195-2 https://lists.suse.com/pipermail/sle-security-updates/2015-December/001761.html E-Mail link for SUSE-SU-2015:2195-2 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/942801 SUSE Bug 942801 https://bugzilla.suse.com/948790 SUSE Bug 948790 https://bugzilla.suse.com/948791 SUSE Bug 948791 https://www.suse.com/security/cve/CVE-2015-4491/ SUSE CVE CVE-2015-4491 page https://www.suse.com/security/cve/CVE-2015-7673/ SUSE CVE CVE-2015-7673 page https://www.suse.com/security/cve/CVE-2015-7674/ SUSE CVE CVE-2015-7674 page SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 gdk-pixbuf-lang-2.30.6-7.2 gdk-pixbuf-query-loaders-2.30.6-7.2 gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 libgdk_pixbuf-2_0-0-2.30.6-7.2 libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 gdk-pixbuf-devel-2.30.6-7.2 gdk-pixbuf-lang-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 gdk-pixbuf-query-loaders-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 libgdk_pixbuf-2_0-0-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 as a component of SUSE Linux Enterprise Desktop 12 SP1 gdk-pixbuf-lang-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 gdk-pixbuf-query-loaders-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 libgdk_pixbuf-2_0-0-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 as a component of SUSE Linux Enterprise Server 12 SP1 gdk-pixbuf-lang-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 gdk-pixbuf-query-loaders-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libgdk_pixbuf-2_0-0-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 gdk-pixbuf-devel-2.30.6-7.2 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling. CVE-2015-4491 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Software Development Kit 12 SP1:gdk-pixbuf-devel-2.30.6-7.2 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20152195-2/ https://www.suse.com/security/cve/CVE-2015-4491.html CVE-2015-4491 https://bugzilla.suse.com/940806 SUSE Bug 940806 https://bugzilla.suse.com/942801 SUSE Bug 942801 https://bugzilla.suse.com/948790 SUSE Bug 948790 io-tga.c in gdk-pixbuf before 2.32.0 uses heap memory after its allocation failed, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) and possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file. CVE-2015-7673 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Software Development Kit 12 SP1:gdk-pixbuf-devel-2.30.6-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20152195-2/ https://www.suse.com/security/cve/CVE-2015-7673.html CVE-2015-7673 https://bugzilla.suse.com/948790 SUSE Bug 948790 Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted GIF image file, which triggers a heap-based buffer overflow. CVE-2015-7674 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Desktop 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-lang-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:gdk-pixbuf-query-loaders-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libgdk_pixbuf-2_0-0-32bit-2.30.6-7.2 SUSE Linux Enterprise Server for SAP Applications 12 SP1:typelib-1_0-GdkPixbuf-2_0-2.30.6-7.2 SUSE Linux Enterprise Software Development Kit 12 SP1:gdk-pixbuf-devel-2.30.6-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20152195-2/ https://www.suse.com/security/cve/CVE-2015-7674.html CVE-2015-7674 https://bugzilla.suse.com/948791 SUSE Bug 948791