CVE-2017-6312

Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, which triggers an out-of-bounds read, related to compiler optimizations.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnome:gdk-pixbuf:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-03-10 02:59

Updated : 2024-02-04 19:11


NVD link : CVE-2017-6312

Mitre link : CVE-2017-6312

CVE.ORG link : CVE-2017-6312


JSON object : View

Products Affected

gnome

  • gdk-pixbuf

fedoraproject

  • fedora

debian

  • debian_linux
CWE
CWE-190

Integer Overflow or Wraparound