MGASA-2016-0322
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 25 Sept 2016, 15:45
Last modified:16 Apr 2026, 06:24
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
25 Sept 2016, 15:45
Published
Vulnerability first disclosed
16 Apr 2026, 06:24
Last Modified
Vulnerability information updated
Description
Updated gdk-pixbuf2.0 packages fix security vulnerability A write out-of-bounds parsing an ico file was found in gdk-pixbuf. A maliciously crafted file can cause the application to crash (CVE-2016-6352). The gdk-pixbuf2.0 package has been updated to version 2.32.3 and patched to fix this issue, and a few other possible security issues.
Affected Systems
- mageia•gdk-pixbuf2.0
< 2.32.3-1.mga5
References (5)
- https://advisories.mageia.org/MGASA-2016-0322.html
- https://bugs.mageia.org/show_bug.cgi?id=19070
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6352
- https://git.gnome.org/browse/gdk-pixbuf/tree/NEWS?h=gdk-pixbuf-2-32&id=c09a36169fdb97fcb937acc7c08909b1fb99e952
- https://lists.opensuse.org/opensuse-updates/2016-09/msg00040.html