Vulnerability Details CVE-2011-2485
The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (memory consumption) via a crafted GIF image file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.1%
CVSS Severity
CVSS v2 Score 4.3
References
- http://ftp.gnome.org/pub/GNOME/sources/gdk-pixbuf/2.23/gdk-pixbuf-2.23.5.news
- http://git.gnome.org/browse/gdk-pixbuf/commit/?id=f8569bb13e2aa1584dde61ca545144750f7a7c98
- http://secunia.com/advisories/45656
- http://secunia.com/advisories/49715
- http://security.gentoo.org/glsa/glsa-201206-20.xml
- http://ftp.gnome.org/pub/GNOME/sources/gdk-pixbuf/2.23/gdk-pixbuf-2.23.5.news
- http://git.gnome.org/browse/gdk-pixbuf/commit/?id=f8569bb13e2aa1584dde61ca545144750f7a7c98
- http://secunia.com/advisories/45656
- http://secunia.com/advisories/49715
- http://security.gentoo.org/glsa/glsa-201206-20.xml
Products affected by CVE-2011-2485
-
cpe:2.3:a:gnome:gdk-pixbuf:-
-
cpe:2.3:a:gnome:gdk-pixbuf:2.16.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.16.3
-
cpe:2.3:a:gnome:gdk-pixbuf:2.16.4
-
cpe:2.3:a:gnome:gdk-pixbuf:2.16.5
-
cpe:2.3:a:gnome:gdk-pixbuf:2.16.6
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.10
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.11
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.3
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.4
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.5
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.6
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.7
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.8
-
cpe:2.3:a:gnome:gdk-pixbuf:2.17.9
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.3
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.4
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.5
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.6
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.7
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.8
-
cpe:2.3:a:gnome:gdk-pixbuf:2.18.9
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.3
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.4
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.5
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.6
-
cpe:2.3:a:gnome:gdk-pixbuf:2.19.7
-
cpe:2.3:a:gnome:gdk-pixbuf:2.20.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.20.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.3
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.4
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.6
-
cpe:2.3:a:gnome:gdk-pixbuf:2.21.7
-
cpe:2.3:a:gnome:gdk-pixbuf:2.22.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.22.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.23.0
-
cpe:2.3:a:gnome:gdk-pixbuf:2.23.1
-
cpe:2.3:a:gnome:gdk-pixbuf:2.23.2
-
cpe:2.3:a:gnome:gdk-pixbuf:2.23.3