Family: Red Hat Local Security Checks --> Category: infos
RHSA-2005-344: gtk Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the gtk packages
Detailed Explanation for this Vulnerability Test
Updated gtk2 packages that fix a double free vulnerability are now
This update has been rated as having important security impact by the Red
Hat Security Response Team.
The gtk2 package contains the GIMP ToolKit (GTK+), a library for creating
graphical user interfaces for the X Window System.
A bug was found in the way gtk2 processes BMP images. It is possible
that a specially crafted BMP image could cause a denial of service attack
on applications linked against gtk2. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2005-0891 to
Users of gtk2 are advised to upgrade to these packages, which contain
a backported patch and is not vulnerable to this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2005-344.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.