[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2018-0016":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":26,"duplicates":27,"related":28,"reserved_at":9,"published_at":35,"modified_at":36,"state":9,"summary":37,"references_raw":39,"kevs":60,"epss":9,"epss_history":61,"metrics":62,"affected":63},"MGASA-2018-0016","Updated gdk-pixbuf2.0 packages fix security vulnerability\n\nJPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability\n(CVE-2017-2862).\n\ntiff_image_parse Code Execution Vulnerability (CVE-2017-2870).\n\nAriel Zelivansky discovered that the GDK-PixBuf library did not properly\nhandle printing certain error messages. If an user or automated system were\ntricked into opening a specially crafted image file, a remote attacker\ncould use this flaw to cause GDK-PixBuf to crash, resulting in a denial of\nservice (CVE-2017-6311).\n\nOut-of-bounds read on io-ico.c (CVE-2017-6312).\n\nA dangerous integer underflow in io-icns.c (CVE-2017-6313).\n\nInfinite loop in io-tiff.c (CVE-2017-6314).\n\nNote, the CVE-2017-2862, CVE-2017-2870, and CVE-2017-6311 issues only\naffected Mageia 5.\n",null,[],[],[],[14,16,18,20,22,24],{"_key":15},"CVE-2017-2862",{"_key":17},"CVE-2017-2870",{"_key":19},"CVE-2017-6311",{"_key":21},"CVE-2017-6312",{"_key":23},"CVE-2017-6313",{"_key":25},"CVE-2017-6314",[],[],[29,30,31,32,33,34],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},"2018-01-01T15:50:28Z","2026-04-16T06:22:56.525772674Z",{"cisa_kev":38,"cisa_ransomware":38,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[40,46,51,56],{"url":41,"sources":42,"tags":44},"https://advisories.mageia.org/MGASA-2018-0016.html",[43],"osv_mageia",[45],"Advisory",{"url":47,"sources":48,"tags":49},"https://bugs.mageia.org/show_bug.cgi?id=21680",[43],[50],"REPORT",{"url":52,"sources":53,"tags":54},"https://usn.ubuntu.com/usn/usn-3418-1/",[43],[50,55],"WEB",{"url":57,"sources":58,"tags":59},"https://lists.opensuse.org/opensuse-updates/2017-09/msg00031.html",[43],[50,55],[],[],[],[64,76],{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":69},"Mageia","gdk-pixbuf2.0","mageia","rpm",[70],{"version":71,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":74,"version_end_type":75,"fixed_in":9},"lt2_32_3_1_1_mga5",true,"ecosystem","2.32.3-1.1.mga5","excluding",{"ecosystem":65,"name":66,"vendor":67,"product":66,"cpe_part":9,"purl_type":68,"purl_namespace":67,"purl_name":66,"source":9,"versions":77},[78],{"version":79,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":80,"version_end_type":75,"fixed_in":9},"lt2_36_10_1_1_mga6","2.36.10-1.1.mga6"]