Fedora Core 2 Update: gdk-pixbuf-0.22.0-12.fc2 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

Is Mandatory Access Control Too Much Security For Enterprise's Linux?

	Yes, too difficult to configure and manage.
	No. You can never have enough security.
	Yes. Standard Linux security settings work for us.
	No. Industry demands will demand SELinux.
	Don't know.

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

Emily Ratliff: OS Security

DanWalsh LiveJournal

Security Bloggers Network

Latest Newsletters

Linux Security Week: October 14th, 2008

Linux Advisory Watch: October 10th, 2008

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora Core 2 Update: gdk-pixbuf-0.22.0-12.fc2

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

David Costanzo found a bug in the way gdk-pixbuf processes BMP images. It is possible that a specially crafted BMP image could cause a denial of service attack in applications linked against gdk-pixbuf. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to this issue.

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-265
2005-03-30
---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : gdk-pixbuf
Version     : 0.22.0                      
Release     : 12.fc2                  
Summary     : An image loading library used with GNOME.
Description :
The gdk-pixbuf package contains an image loading library used with the
GNOME GUI desktop environment. The GdkPixBuf library provides image
loading facilities, the rendering of a GdkPixBuf into various formats
(drawables or GdkRGB buffers), and a cache interface.

---------------------------------------------------------------------
Update Information:

David Costanzo found a bug in the way gdk-pixbuf processes BMP images.
It is possible that a specially crafted BMP image could cause a denial
of service attack in applications linked against gdk-pixbuf. 
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2005-0891 to this issue.

---------------------------------------------------------------------
* Mon Mar 28 2005 Matthias Clasen  - 1:0.22.0-12.fc2

- Fix a double free in the bmp loader


---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

a0ba48a2695141af2d4a0f7ff3218062  SRPMS/gdk-pixbuf-0.22.0-12.fc2.src.rpm
c1dc4fe31433159afb6bcfdd98dd84a2  x86_64/gdk-
pixbuf-0.22.0-12.fc2.x86_64.rpm
c561473d5921958c2aa7aed692671933  x86_64/gdk-pixbuf-
devel-0.22.0-12.fc2.x86_64.rpm
eb0fae059933dd9613048b4dfaa73d6f  x86_64/gdk-pixbuf-
gnome-0.22.0-12.fc2.x86_64.rpm
886d8069570a4202bfbcb6304203fd5a  x86_64/debug/gdk-pixbuf-
debuginfo-0.22.0-12.fc2.x86_64.rpm
f56442e8a45c71b7004373b94acf5a9f  i386/gdk-pixbuf-0.22.0-12.fc2.i386.rpm
0b16b3e1d3223b91728211fa311e8d72  i386/gdk-pixbuf-
devel-0.22.0-12.fc2.i386.rpm
19ea2d840949337df59ccbe8e3303648  i386/gdk-pixbuf-
gnome-0.22.0-12.fc2.i386.rpm
a64d219947db70a88a5a29f1fba24227  i386/debug/gdk-pixbuf-
debuginfo-0.22.0-12.fc2.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
---------------------------------------------------------------------



--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

< Prev		Next >

Partner:

Latest Features

Never Installed a Firewall on Ubuntu? Try Firestarter

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Open Source Tool of March: ZoneMinder

Meet the Anti-Nmap: PSAD

Yesterday's Edition

Apache and Setting Up SSL

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital