USN-3418-1

Advisory lineage Upstream: 6 Downstream: 0
Published: 18 Sept 2017, 13:24
Last modified:22 Apr 2026, 09:38

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

18 Sept 2017, 13:24
Published
Vulnerability first disclosed
22 Apr 2026, 09:38
Last Modified
Vulnerability information updated

Description

gdk-pixbuf vulnerabilities It was discovered that the GDK-PixBuf library did not properly handle certain jpeg images. If an user or automated system were tricked into opening a specially crafted jpeg file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-2862) It was discovered that the GDK-PixBuf library did not properly handle certain tiff images. If an user or automated system were tricked into opening a specially crafted tiff file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-2870) Ariel Zelivansky discovered that the GDK-PixBuf library did not properly handle printing certain error messages. If an user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service. (CVE-2017-6311)

Affected Systems

  • ubuntugdk-pixbuf

    < 2.30.7-0ubuntu1.7 | < 2.32.2-1ubuntu1.3

References (4)