Package "gir1.2-gdkpixbuf-2.0"

Name: gir1.2-gdkpixbuf-2.0


GDK Pixbuf library - GObject-Introspection

Latest version: 2.26.1-1ubuntu1.5
Release: precise (12.04)
Level: updates
Repository: main
Head package: gdk-pixbuf
Homepage: http://www.gtk.org/


Download "gir1.2-gdkpixbuf-2.0"

Other versions of "gir1.2-gdkpixbuf-2.0" in Precise

Repository Area Version
base main 2.26.1-1
security main 2.26.1-1ubuntu1.5


Version: 2.26.1-1ubuntu1.5 2016-09-21 21:06:31 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.5) precise-security; urgency=medium

  * SECURITY UPDATE: Fix a heap-based buffer overflow
    - debian/patches/CVE-2015-7552.patch: Protect against overflow. Based on
      upstream patches.
    - CVE-2015-7552
  * SECURITY UPDATE: Fix multiple integer overflows
    - debian/patches/CVE-2015-8875.patch: use gint64 in more places to avoid
      overflow when shifting
    - CVE-2015-8875

 -- Emily Ratliff <email address hidden> Wed, 21 Sep 2016 10:14:57 -0500

Source diff to previous version
CVE-2015-7552 Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of se
CVE-2015-8875 Multiple integer overflows in the (1) pixops_composite_nearest, (2) pixops_composite_color_nearest, and (3) pixops_process functions in pixops/pixops

Version: 2.26.1-1ubuntu1.3 2015-10-13 21:06:28 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.3) precise-security; urgency=medium

  * SECURITY UPDATE: Heap overflow and DoS with tga files
    - debian/patches/CVE-2015-7673-1.patch: pass on OOM conditions in
      make_weights functions in gdk-pixbuf/pixops/pixops.c
    - debian/patches/CVE-2015-7673-2.patch: Wrap TGAColormap struct in
      its own API in gdk-pixbuf/io-tga.c
    - debian/patches/CVE-2015-7673-3.patch: always parse colormaps in
  * SECURITY UPDATE: heap overflow when scaling GIF images
    - debian/patches/CVE-2015-767.patch: ensure variables are large
      enough when shifting bits in gdk-pixbuf/pixops/pixops.c

 -- Steve Beattie Sat, 10 Oct 2015 07:55:26 -0700

Source diff to previous version
CVE-2015-7673 Heap overflow and DoS with a tga file

Version: 2.26.1-1ubuntu1.2 2015-08-26 16:06:50 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.2) precise-security; urgency=medium

  * SECURITY UPDATE: heap overflow when scaling bitmap images
    - debian/patches/CVE-2015-4491-1.patch: check for overflows in
    - debian/patches/CVE-2015-4491-2.patch: also check n_x in
    - CVE-2015-4491

 -- Marc Deslauriers Tue, 18 Aug 2015 13:04:11 -0400

Source diff to previous version
CVE-2015-4491 Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox

Version: 2.26.1-1ubuntu1.1 2014-04-15 10:06:35 UTC

  gdk-pixbuf (2.26.1-1ubuntu1.1) precise; urgency=medium

  * Link with -Wl,--no-as-needed so that we get linked against libgobject,
    avoiding crashes when modules load and unload newer versions of libgobject
    which have a global constructor. (LP: #1174253)
 -- Iain Lane <email address hidden> Fri, 21 Mar 2014 18:06:47 +0000

1174253 Segfault (core dumped) in gdk-pixbuf on upgrade

About   -   Send Feedback to @ubuntu_updates