CVE-2021-44648
Description
GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.154
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| GDK Pixbuf library (USN-5607-1) libgdk-pixbuf2.0-0_2.40.0+dfsg-3ubuntu0.4_i386.deb | Linux |
| GDK Pixbuf library (USN-5607-1) libgdk-pixbuf2.0-0_2.40.0+dfsg-3ubuntu0.4_amd64.deb | Linux |
| GDK Pixbuf library (USN-5607-1) libgdk-pixbuf-2.0-0_2.42.8+dfsg-1ubuntu0.1_i386.deb | Linux |
| GDK Pixbuf library (USN-5607-1) libgdk-pixbuf-2.0-0_2.42.8+dfsg-1ubuntu0.1_amd64.deb | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-2.42.6-3.el9.i686.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-2.42.6-3.el9.x86_64.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-debugsource-2.42.6-3.el9.i686.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-debugsource-2.42.6-3.el9.x86_64.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-devel-2.42.6-3.el9.i686.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-devel-2.42.6-3.el9.x86_64.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-modules-2.42.6-3.el9.i686.rpm | Linux |
| (RHSA-2023:2216) gdk-pixbuf2 security update gdk-pixbuf2-modules-2.42.6-3.el9.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) gdk-pixbuf-lang-2.40.0-150200.3.9.1.noarch.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) gdk-pixbuf-devel-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgdk_pixbuf-2_0-0-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) gdk-pixbuf-thumbnailer-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) gdk-pixbuf-query-loaders-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) typelib-1_0-GdkPixbuf-2_0-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2022:3230-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) typelib-1_0-GdkPixdata-2_0-2.40.0-150200.3.9.1.x86_64.rpm | Linux |
| Gdk-pixbuf2 update (ELSA-2023-2216) gdk-pixbuf2-2.42.6-3.el9.i686.rpm | Linux |
| Gdk-pixbuf2 update (ELSA-2023-2216) gdk-pixbuf2-2.42.6-3.el9.x86_64.rpm | Linux |
| Gdk-pixbuf2-devel update (ELSA-2023-2216) gdk-pixbuf2-devel-2.42.6-3.el9.i686.rpm | Linux |
| Gdk-pixbuf2-devel update (ELSA-2023-2216) gdk-pixbuf2-devel-2.42.6-3.el9.x86_64.rpm | Linux |
| Gdk-pixbuf2-modules update (ELSA-2023-2216) gdk-pixbuf2-modules-2.42.6-3.el9.i686.rpm | Linux |
| Gdk-pixbuf2-modules update (ELSA-2023-2216) gdk-pixbuf2-modules-2.42.6-3.el9.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS-2023-352) gdk-pixbuf2-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS-2023-352) gdk-pixbuf2-devel-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS-2023-352) gdk-pixbuf2-tests-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS-2023-352) gdk-pixbuf2-modules-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf2.0-doc_2.42.2+dfsg-1+deb11u1_all.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf2.0-common_2.42.2+dfsg-1+deb11u1_all.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf2.0-bin_2.42.2+dfsg-1+deb11u1_i386.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf2.0-bin_2.42.2+dfsg-1+deb11u1_amd64.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf-2.0-dev_2.42.2+dfsg-1+deb11u1_i386.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf-2.0-dev_2.42.2+dfsg-1+deb11u1_amd64.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf-2.0-0_2.42.2+dfsg-1+deb11u1_i386.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) libgdk-pixbuf-2.0-0_2.42.2+dfsg-1+deb11u1_amd64.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) gir1.2-gdkpixbuf-2.0_2.42.2+dfsg-1+deb11u1_i386.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) gir1.2-gdkpixbuf-2.0_2.42.2+dfsg-1+deb11u1_amd64.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) gdk-pixbuf-tests_2.42.2+dfsg-1+deb11u1_i386.deb | Linux |
| gdk-pixbuf security update(DSA-5228-1) gdk-pixbuf-tests_2.42.2+dfsg-1+deb11u1_amd64.deb | Linux |
| gdk-pixbuf2 Security Update (ALAS2023-2023-352) gdk-pixbuf2-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS2023-2023-352) gdk-pixbuf2-devel-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS2023-2023-352) gdk-pixbuf2-modules-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
| gdk-pixbuf2 Security Update (ALAS2023-2023-352) gdk-pixbuf2-tests-2.42.10-1.amzn2023.0.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234