CVE-2011-2897
published 2019-11-12CVE-2011-2897: gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
PriorityP348critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.94%
77.6th percentile
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | gdk-pixbuf | — | — |
| gdk-pixbuf | gdk-pixbuf | — | — |
| gnome | gdk-pixbuf | <= 2.31.1 | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_debian9.8LOW
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2011-2897: gdk-pixbuf - gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decom...
vendor_debian·2011·CVSS 9.8
CVE-2011-2897 [CRITICAL] CVE-2011-2897: gdk-pixbuf - gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decom...
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
Red Hat
gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
vendor_redhat·2001-06-01·CVSS 9.8
CVE-2011-2897 [CRITICAL] gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
Package: gdk-pixbuf (Red Hat Enterprise Linux 4) - Will not fix
Package: gtk2 (Red Hat Enterprise Linux 4) - Not affected
Package: gdk-pixbuf (Red Hat Enterprise Linux 5) - Will not fix
Package: gtk2 (Red Hat Enterprise Linux 5) - Not affected
Package: gtk2 (Red Hat Enterprise Linux 6) - Not affected
GHSA
GHSA-37hm-5m3h-f5px: gdk-pixbuf through 2
ghsa_unreviewed·2022-04-23
CVE-2011-2897 [CRITICAL] CWE-20 GHSA-37hm-5m3h-f5px: gdk-pixbuf through 2
gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables [fedora-all]
bugzilla·2011-08-17·CVSS 9.8
CVE-2011-2897 [CRITICAL] CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables [fedora-all]
CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=727081
Please not
Bugzilla
CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow
bugzilla·2011-08-03·CVSS 9.3
CVE-2011-2896 [CRITICAL] CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow
CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow
GIF image file format readers in various open source projects are based on the GIF decoder implementation written by David Koblas. This implementation contains a bug in the LZW decompressor, causing it to in correctly handle compressed streams that contain code words that were not yet added to the decompression table. LZW decompression has a special case (a KwKwK string) when code word may match the first free entry in the decompression table. The implementation used in this GIF reading code allows code words not only matching, but also exceeding the first free entry.
This problem is identical to a bug found in BSD compress (CVE-2011-2895, bug #727624), but given the unclear relationship between BSD compress and GIF deco
Bugzilla
CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
bugzilla·2011-08-01·CVSS 2.6
CVE-2011-2897 [LOW] CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
CVE-2011-2897 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables
GDK's GIF image reader is based on David Koblas' code that is also used in several other GIF image readers. This code contained an input validation flaw. Input code size was read from input GIF file and used to initialize decoding tables without checking the value, leading to buffer overflow. Relevant GDK code is:
941 static int
942 gif_prepare_lzw (GifContext *context)
943 {
...
946 if (!gif_read (context, &(context->lzw_set_code_size), 1)) {
947 /*g_message (_("GIF: EOF / read error on image data\n"));*/
948 return -1;
949 }
...
952 context->lzw_clear_code = 1 lzw_set_code_size;
...
962 for (i = 0; i lzw_clear_code; ++i) {
963 context->lzw_table[0][i] = 0;
964 context->lzw_table[1][i] = i;
965 }
https://access.redhat.com/security/cve/cve-2011-2897https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2897https://security-tracker.debian.org/tracker/CVE-2011-2897https://access.redhat.com/security/cve/cve-2011-2897https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2897https://security-tracker.debian.org/tracker/CVE-2011-2897
2019-11-12
Published