UbuntuUpdates.org

Package "gdk-pixbuf"

Name: gdk-pixbuf

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • GDK Pixbuf library - GObject-Introspection
  • GDK Pixbuf library
  • GDK Pixbuf library - data files
  • GDK Pixbuf library (development files)

Latest version: 2.26.1-1ubuntu1.5
Release: precise (12.04)
Level: updates
Repository: main

Links

Save this URL for the latest version of "gdk-pixbuf": https://www.ubuntuupdates.org/gdk-pixbuf



Other versions of "gdk-pixbuf" in Precise

Repository Area Version
base main 2.26.1-1
security main 2.26.1-1ubuntu1.5

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.26.1-1ubuntu1.5 2016-09-21 21:06:31 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.5) precise-security; urgency=medium

  * SECURITY UPDATE: Fix a heap-based buffer overflow
    - debian/patches/CVE-2015-7552.patch: Protect against overflow. Based on
      upstream patches.
    - CVE-2015-7552
  * SECURITY UPDATE: Fix multiple integer overflows
    - debian/patches/CVE-2015-8875.patch: use gint64 in more places to avoid
      overflow when shifting
    - CVE-2015-8875

 -- Emily Ratliff <email address hidden> Wed, 21 Sep 2016 10:14:57 -0500

Source diff to previous version
CVE-2015-7552 Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of se
CVE-2015-8875 Multiple integer overflows in the (1) pixops_composite_nearest, (2) pixops_composite_color_nearest, and (3) pixops_process functions in pixops/pixops

Version: 2.26.1-1ubuntu1.3 2015-10-13 21:06:28 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.3) precise-security; urgency=medium

  * SECURITY UPDATE: Heap overflow and DoS with tga files
    - debian/patches/CVE-2015-7673-1.patch: pass on OOM conditions in
      make_weights functions in gdk-pixbuf/pixops/pixops.c
    - debian/patches/CVE-2015-7673-2.patch: Wrap TGAColormap struct in
      its own API in gdk-pixbuf/io-tga.c
    - debian/patches/CVE-2015-7673-3.patch: always parse colormaps in
      gdk-pixbuf/io-tga.c
  * SECURITY UPDATE: heap overflow when scaling GIF images
    - debian/patches/CVE-2015-767.patch: ensure variables are large
      enough when shifting bits in gdk-pixbuf/pixops/pixops.c

 -- Steve Beattie Sat, 10 Oct 2015 07:55:26 -0700

Source diff to previous version
CVE-2015-7673 Heap overflow and DoS with a tga file

Version: 2.26.1-1ubuntu1.2 2015-08-26 16:06:50 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.2) precise-security; urgency=medium

  * SECURITY UPDATE: heap overflow when scaling bitmap images
    - debian/patches/CVE-2015-4491-1.patch: check for overflows in
      gdk-pixbuf/pixops/pixops.c.
    - debian/patches/CVE-2015-4491-2.patch: also check n_x in
      gdk-pixbuf/pixops/pixops.c.
    - CVE-2015-4491

 -- Marc Deslauriers Tue, 18 Aug 2015 13:04:11 -0400

Source diff to previous version
CVE-2015-4491 Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox

Version: 2.26.1-1ubuntu1.1 2014-04-15 10:06:35 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.1) precise; urgency=medium

  * Link with -Wl,--no-as-needed so that we get linked against libgobject,
    avoiding crashes when modules load and unload newer versions of libgobject
    which have a global constructor. (LP: #1174253)
 -- Iain Lane <email address hidden> Fri, 21 Mar 2014 18:06:47 +0000

1174253 Segfault (core dumped) in gdk-pixbuf on upgrade



About   -   Send Feedback to @ubuntu_updates