Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-12841

Опубликовано: 05 авг. 2025
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2025-12841: gdk-pixbuf2 security update (MODERATE)

[2.42.6-6]

  • Fix an oversight
  • Related: RHEL-102354

[2.42.6-5]

  • Backport fixes for CVE-2025-7345
  • Resolves: RHEL-102354

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

gdk-pixbuf2

2.42.6-6.el9_6

gdk-pixbuf2-devel

2.42.6-6.el9_6

gdk-pixbuf2-modules

2.42.6-6.el9_6

Oracle Linux x86_64

gdk-pixbuf2

2.42.6-6.el9_6

gdk-pixbuf2-devel

2.42.6-6.el9_6

gdk-pixbuf2-modules

2.42.6-6.el9_6

Связанные CVE

CVE-2025-7345

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2025-7345

CVSS3: 7.5
ubuntu
около 1 месяца назад

A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.

redhat логотип

CVE-2025-7345

CVSS3: 7.5
redhat
около 1 месяца назад

A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.

nvd логотип

CVE-2025-7345

CVSS3: 7.5
nvd
около 1 месяца назад

A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.

msrc логотип

CVE-2025-7345

CVSS3: 7.5
msrc
27 дней назад

Описание отсутствует

debian логотип

CVE-2025-7345

CVSS3: 7.5
debian
около 1 месяца назад

A flaw exists in gdk\u2011pixbuf within the gdk_pixbuf__jpeg_image_loa ...