CVE-2016-6352
published 2016-10-03CVE-2016-6352: The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted…
PriorityP337high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
EPSS
3.85%
88.8th percentile
The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | gdk-pixbuf | < gdk-pixbuf 2.35.4-1 (bookworm) | gdk-pixbuf 2.35.4-1 (bookworm) |
| gnome | gdk-pixbuf | <= 2.35.2 | — |
| gnome | gdk-pixbuf | >= 0 < 2.35.4-1 | 2.35.4-1 |
| gnome | gdk-pixbuf | >= 0 < 2.35.4-1 | 2.35.4-1 |
| gnome | gdk-pixbuf | >= 0 < 2.35.4-1 | 2.35.4-1 |
| gnome | gdk-pixbuf | >= 0 < 2.35.4-1 | 2.35.4-1 |
| gnome | gdk-pixbuf | >= 0 < 2.30.7-0ubuntu1.6 | 2.30.7-0ubuntu1.6 |
| gnome | gdk-pixbuf | >= 0 < 2.32.2-1ubuntu1.2 | 2.32.2-1ubuntu1.2 |
| opensuse | leap | — | — |
| opensuse | opensuse | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.8HIGH
vendor_ubuntu7.8HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mrq8-qgpv-5qqv: The OneLine32 function in io-ico
ghsa_unreviewed·2022-05-13
CVE-2016-6352 [HIGH] CWE-787 GHSA-mrq8-qgpv-5qqv: The OneLine32 function in io-ico
The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.
OSV
CVE-2016-6352: The OneLine32 function in io-ico
osv·2016-10-03·CVSS 7.5
CVE-2016-6352 [HIGH] CVE-2016-6352: The OneLine32 function in io-ico
The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.
OSV
gdk-pixbuf vulnerabilities
osv·2016-09-21·CVSS 7.8
CVE-2015-7552 [HIGH] gdk-pixbuf vulnerabilities
gdk-pixbuf vulnerabilities
It was discovered that the GDK-PixBuf library did not properly handle specially
crafted bmp images, leading to a heap-based buffer overflow. If a user or
automated system were tricked into opening a specially crafted bmp file, a
remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting
in a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2015-7552)
It was discovered that the GDK-PixBuf library contained an integer overflow
when handling certain images. If a user or automated system were tricked into
opening a crafted image file, a remote attacker could use this flaw to cause
GDK-PixBuf to crash, resulting in a denial of service, or possibly execute
arbitrary code. This
Ubuntu
GDK-PixBuf vulnerabilities
vendor_ubuntu·2016-09-21·CVSS 7.8
CVE-2015-7552 [HIGH] GDK-PixBuf vulnerabilities
Title: GDK-PixBuf vulnerabilities
Summary: GDK-PixBuf could be made to crash or run programs as your login if it opened a specially crafted file.
It was discovered that the GDK-PixBuf library did not properly handle specially
crafted bmp images, leading to a heap-based buffer overflow. If a user or
automated system were tricked into opening a specially crafted bmp file, a
remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting
in a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2015-7552)
It was discovered that the GDK-PixBuf library contained an integer overflow
when handling certain images. If a user or automated system were tricked into
opening a crafted image file, a remote attacker coul
Red Hat
gdk-pixbuf: Out-of-bounds write in OneLine32() function
vendor_redhat·2016-07-13·CVSS 7.5
CVE-2016-6352 [HIGH] CWE-787 gdk-pixbuf: Out-of-bounds write in OneLine32() function
gdk-pixbuf: Out-of-bounds write in OneLine32() function
The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.
Package: gdk-pixbuf (Red Hat Enterprise Linux 5) - Not affected
Package: gdk-pixbuf2 (Red Hat Enterprise Linux 6) - Will not fix
Package: gdk-pixbuf2 (Red Hat Enterprise Linux 7) - Will not fix
Package: mingw-virt-viewer (Red Hat Enterprise Virtualization 3) - Will not fix
Debian
CVE-2016-6352: gdk-pixbuf - The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote att...
vendor_debian·2016·CVSS 7.5
CVE-2016-6352 [HIGH] CVE-2016-6352: gdk-pixbuf - The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote att...
The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.
Scope: local
bookworm: resolved (fixed in 2.35.4-1)
bullseye: resolved (fixed in 2.35.4-1)
forky: resolved (fixed in 2.35.4-1)
sid: resolved (fixed in 2.35.4-1)
trixie: resolved (fixed in 2.35.4-1)
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-updates/2016-09/msg00040.htmlhttp://www.openwall.com/lists/oss-security/2016/07/13/11http://www.openwall.com/lists/oss-security/2016/07/26/11http://www.ubuntu.com/usn/USN-3085-1https://bugzilla.gnome.org/show_bug.cgi?id=769170https://git.gnome.org/browse/gdk-pixbuf/commit/?id=88af50a864195da1a4f7bda5f02539704fbda599https://git.gnome.org/browse/gdk-pixbuf/tree/NEWS?id=640134c46221689d263369872937192e4484c83bhttps://lists.debian.org/debian-lts-announce/2019/12/msg00025.htmlhttp://lists.opensuse.org/opensuse-updates/2016-09/msg00040.htmlhttp://www.openwall.com/lists/oss-security/2016/07/13/11http://www.openwall.com/lists/oss-security/2016/07/26/11http://www.ubuntu.com/usn/USN-3085-1https://bugzilla.gnome.org/show_bug.cgi?id=769170https://git.gnome.org/browse/gdk-pixbuf/commit/?id=88af50a864195da1a4f7bda5f02539704fbda599https://git.gnome.org/browse/gdk-pixbuf/tree/NEWS?id=640134c46221689d263369872937192e4484c83bhttps://lists.debian.org/debian-lts-announce/2019/12/msg00025.html
2016-10-03
Published