CVE-2012-2370
Published Aug 13, 2012
Last updated 2 years ago
Overview
- Description
- Multiple integer overflows in the read_bitmap_file_data function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service (application crash) via a negative (1) height or (2) width in an XBM file, which triggers a heap-based buffer overflow.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-189
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57EF9014-168C-4B6C-8772-ACC33C1210E1",
"versionEndIncluding": "2.26.0"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.23.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B45797BA-3E5D-4273-B443-89717E04393D"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.23.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D7CDA38C-46A3-4074-9C92-414E81220652"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.23.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D961926-F6ED-406D-AD86-7685D6DD8EEF"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.24.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E6362DC2-B5DD-4A14-932A-D6C3E7891C3B"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.24.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AB43163-8A11-4B8C-9472-0CCE9DD194FD"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.25.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A4C539E-FB81-4E26-BD09-F6C8CDE7A1E6"
},
{
"criteria": "cpe:2.3:a:gnome:gdk-pixbuf:2.25.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA143DE8-BC70-4072-851B-C425E592A24E"
}
],
"operator": "OR"
}
]
}
]