[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:2470-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":89,"epss":9,"epss_history":90,"metrics":91,"affected":92},"SUSE-SU-2018:2470-1","Security update for gtk2\n\nThis update for gtk2 provides the following fixes:\n\nThese security issues were fixed:\n\n- CVE-2017-6312: Prevent integer overflow that allowed context-dependent\n  attackers to cause a denial of service (segmentation fault and application\n  crash) via a crafted image entry offset in an ICO file (bsc#1027026).\n- CVE-2017-6314: The make_available_at_least function allowed context-dependent\n  attackers to cause a denial of service (infinite loop) via a large TIFF file\n  (bsc#1027025).\n- CVE-2017-6313: Prevent integer underflow in the load_resources function that\n  allowed context-dependent attackers to cause a denial of service (out-of-bounds\n  read and program crash) via a crafted image entry size in an ICO file\n  (bsc#1027024).\n- CVE-2017-2862: Prevent heap overflow in the\n  gdk_pixbuf__jpeg_image_load_increment function. A specially crafted jpeg file\n  could have caused a heap overflow resulting in remote code execution\n  (bsc#1048289)\n- CVE-2017-2870: Prevent integer overflow in the tiff_image_parse\n  functionality. A specially crafted tiff file could have caused a heap-overflow\n  resulting in remote code execution (bsc#1048544).\n\nThis non-security issue was fixed:\n\n- Prevent an infinite loop when a window is destroyed while traversed (bsc#1039465).\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2017-2862",{"_key":17},"CVE-2017-2870",{"_key":19},"CVE-2017-6312",{"_key":21},"CVE-2017-6313",{"_key":23},"CVE-2017-6314",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2018-08-21T12:55:58Z","2026-02-04T04:09:12.376564Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,43,48,52,56,60,64,68,73,77,81,85],{"url":38,"sources":39,"tags":41},"https://www.suse.com/support/update/announcement/2018/suse-su-20182470-1/",[40],"osv_suse",[42],"Advisory",{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/1027024",[40],[47],"REPORT",{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/1027025",[40],[47],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1027026",[40],[47],{"url":57,"sources":58,"tags":59},"https://bugzilla.suse.com/1039465",[40],[47],{"url":61,"sources":62,"tags":63},"https://bugzilla.suse.com/1048289",[40],[47],{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/1048544",[40],[47],{"url":69,"sources":70,"tags":71},"https://www.suse.com/security/cve/CVE-2017-2862",[40],[72],"WEB",{"url":74,"sources":75,"tags":76},"https://www.suse.com/security/cve/CVE-2017-2870",[40],[72],{"url":78,"sources":79,"tags":80},"https://www.suse.com/security/cve/CVE-2017-6312",[40],[72],{"url":82,"sources":83,"tags":84},"https://www.suse.com/security/cve/CVE-2017-6313",[40],[72],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2017-6314",[40],[72],[],[],[],[93,106,110],{"ecosystem":94,"name":95,"vendor":96,"product":97,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":97,"source":9,"versions":99},"SUSE Linux Enterprise","gtk2","suse","gtk2&distro=SUSE Linux Enterprise Server 11 SP4","rpm",[100],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},"lt2_18_9_0_45_8_1",true,"ecosystem","2.18.9-0.45.8.1","excluding",{"ecosystem":94,"name":95,"vendor":96,"product":107,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":107,"source":9,"versions":108},"gtk2&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4",[109],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},{"ecosystem":94,"name":95,"vendor":96,"product":111,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":111,"source":9,"versions":112},"gtk2&distro=SUSE Linux Enterprise Software Development Kit 11 SP4",[113],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9}]