Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2004:033: gtk2, gdk-pixbuf Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the gtk2, gdk-pixbuf package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2004:033 (gtk2, gdk-pixbuf).
gdk-pixbuf is an image loading and rendering library mostly used
by GTK and GNOME applications. It is distributed as a separate
package for gtk1 and integrated into the gtk2 package. Chris
Evans has discovered a heap based, a stack based and an integer
overflow in the XPM and ICO loaders of those libraries. The
overflows can be exploited by tricking an application to display
a malformed image to make it crash or to execute code.
Solution : http://www.suse.de/security/2004_33_gtk2_gdk_pixbuf.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.