Oval Definition:oval:org.mitre.oval:def:11539
Revision Date:2013-04-29Version:12
Title:Integer overflow in pixbuf_create_from_xpm (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, allows remote attackers to execute arbitrary code via certain n_col and cpp values that enable a heap-based buffer overflow. NOTE: this identifier is ONLY for gtk+. It was incorrectly referenced in an advisory for a different issue (CVE-2004-0687).
Description:Integer overflow in pixbuf_create_from_xpm (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, allows remote attackers to execute arbitrary code via certain n_col and cpp values that enable a heap-based buffer overflow. NOTE: this identifier is ONLY for gtk+. It was incorrectly referenced in an advisory for a different issue (CVE-2004-0687).
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0782
Platform(s):CentOS Linux 3
Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • gdk-pixbuf-devel is earlier than 1:0.22.0-11.3.3
  • OR gtk2 is earlier than 0:2.2.4-8.1
  • OR gdk-pixbuf-gnome is earlier than 1:0.22.0-11.3.3
  • OR gdk-pixbuf is earlier than 1:0.22.0-11.3.3
  • OR gtk2-devel is earlier than 0:2.2.4-8.1
    • BACK