openSUSE-SU-2016:0647-1

Опубликовано: 03 мар. 2016

Источник: suse-cvrf

Описание

Security update for eog

This update for eog fixes the following issues:

Update to version 3.14.5 (CVE-2013-7447 boo#966682):
- bgo#762028, >=eog-3.16 is affected by CVE-2013-7447.
- Updated translations.

Список пакетов

openSUSE Leap 42.1

eog-3.16.4-6.1

eog-devel-3.16.4-6.1

eog-lang-3.16.4-6.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2016-03/msg00010.html
E-Mail link for openSUSE-SU-2016:0647-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, allows remote attackers to cause a denial of service (crash) via a large image file, which triggers a large memory allocation.

Затронутые продукты

openSUSE Leap 42.1:eog-3.16.4-6.1

openSUSE Leap 42.1:eog-devel-3.16.4-6.1

openSUSE Leap 42.1:eog-lang-3.16.4-6.1

Ссылки

https://www.suse.com/security/cve/CVE-2013-7447.html
CVE-2013-7447
https://bugzilla.suse.com/966682
SUSE Bug 966682

openSUSE-SU-2016:0647-1

Описание

Список пакетов

openSUSE Leap 42.1

Ссылки

Уязвимость: CVE-2013-7447

Описание

Затронутые продукты

Ссылки