[gentoo-announce] [ GLSA 200511-14 ] GTK+ 2, GdkPixbuf: Multiple XPM decoding vulnerabilities - gentoo-announce

From:	Thierry Carrez <koon@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] [ GLSA 200511-14 ] GTK+ 2, GdkPixbuf: Multiple XPM decoding vulnerabilities
Date:	Wed, 16 Nov 2005 15:30:48
Message-Id:	`437B4B30.4090100@gentoo.org`

1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2

Gentoo Linux Security Advisory                           GLSA 200511-14

3

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

4

                                            http://security.gentoo.org/

5

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

6

7

  Severity: Normal

8

     Title: GTK+ 2, GdkPixbuf: Multiple XPM decoding vulnerabilities

9

      Date: November 16, 2005

10

      Bugs: #112608

11

        ID: 200511-14

12

13

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

14

15

Synopsis

16

========

17

18

The GdkPixbuf library, that is also included in GTK+ 2, contains

19

vulnerabilities that could lead to a Denial of Service or the

20

execution of arbitrary code.

21

22

Background

23

==========

24

25

GTK+ (the GIMP Toolkit) is a toolkit for creating graphical user

26

interfaces. The GdkPixbuf library provides facilities for image

27

handling. It is available as a standalone library and also packaged

28

with GTK+ 2.

29

30

Affected packages

31

=================

32

33

    -------------------------------------------------------------------

34

     Package                /   Vulnerable   /              Unaffected

35

    -------------------------------------------------------------------

36

  1  x11-libs/gtk+              < 2.8.6-r1                 >= 2.8.6-r1

37

                                                         *>= 2.6.10-r1

38

                                                                 < 2.0

39

  2  media-libs/gdk-pixbuf      < 0.22.0-r5               >= 0.22.0-r5

40

    -------------------------------------------------------------------

41

     2 affected packages on all of their supported architectures.

42

    -------------------------------------------------------------------

43

44

Description

45

===========

46

47

iDEFENSE reported a possible heap overflow in the XPM loader

48

(CVE-2005-3186). Upon further inspection, Ludwig Nussel discovered two

49

additional issues in the XPM processing functions : an integer overflow

50

(CVE-2005-2976) that affects only gdk-pixbuf, and an infinite loop

51

(CVE-2005-2975).

52

53

Impact

54

======

55

56

Using a specially crafted XPM image an attacker could cause an affected

57

application to enter an infinite loop or trigger the overflows,

58

potentially allowing the execution of arbitrary code.

59

60

Workaround

61

==========

62

63

There is no known workaround at this time.

64

65

Resolution

66

==========

67

68

All GTK+ 2 users should upgrade to the latest version:

69

70

    # emerge --sync

71

    # emerge --ask --oneshot --verbose x11-libs/gtk+

72

73

All GdkPixbuf users should upgrade to the latest version:

74

75

    # emerge --sync

76

    # emerge --ask --oneshot --verbose ">=media-libs/gdk-pixbuf-0.22.0-r5"

77

78

References

79

==========

80

81

  [ 1 ] CVE-2005-2975

82

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2975

83

  [ 2 ] CVE-2005-2976

84

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2976

85

  [ 3 ] CVE-2005-3186

86

        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3186

87

  [ 4 ] iDefense Security Advisory 11.15.05

88

89

http://www.idefense.com/application/poi/display?id=339&type=vulnerabilities

90

91

Availability

92

============

93

94

This GLSA and any updates to it are available for viewing at

95

the Gentoo Security Website:

96

97

  http://security.gentoo.org/glsa/glsa-200511-14.xml

98

99

Concerns?

100

=========

101

102

Security is a primary focus of Gentoo Linux and ensuring the

103

confidentiality and security of our users machines is of utmost

104

importance to us. Any security concerns should be addressed to

105

security@g.o or alternatively, you may file a bug at

106

http://bugs.gentoo.org.

107

108

License

109

=======

110

111

Copyright 2005 Gentoo Foundation, Inc; referenced text

112

belongs to its owner(s).

113

114

The contents of this document are licensed under the

115

Creative Commons - Attribution / Share Alike license.

116

117

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Archives: gentoo-announce

Attachments

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory GLSA 200511-14
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: GTK+ 2, GdkPixbuf: Multiple XPM decoding vulnerabilities
9	Date: November 16, 2005
10	Bugs: #112608
11	ID: 200511-14
12
13	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14
15	Synopsis
16	========
17
18	The GdkPixbuf library, that is also included in GTK+ 2, contains
19	vulnerabilities that could lead to a Denial of Service or the
20	execution of arbitrary code.
21
22	Background
23	==========
24
25	GTK+ (the GIMP Toolkit) is a toolkit for creating graphical user
26	interfaces. The GdkPixbuf library provides facilities for image
27	handling. It is available as a standalone library and also packaged
28	with GTK+ 2.
29
30	Affected packages
31	=================
32
33	-------------------------------------------------------------------
34	Package / Vulnerable / Unaffected
35	-------------------------------------------------------------------
36	1 x11-libs/gtk+ < 2.8.6-r1 >= 2.8.6-r1
37	*>= 2.6.10-r1
38	< 2.0
39	2 media-libs/gdk-pixbuf < 0.22.0-r5 >= 0.22.0-r5
40	-------------------------------------------------------------------
41	2 affected packages on all of their supported architectures.
42	-------------------------------------------------------------------
43
44	Description
45	===========
46
47	iDEFENSE reported a possible heap overflow in the XPM loader
48	(CVE-2005-3186). Upon further inspection, Ludwig Nussel discovered two
49	additional issues in the XPM processing functions : an integer overflow
50	(CVE-2005-2976) that affects only gdk-pixbuf, and an infinite loop
51	(CVE-2005-2975).
52
53	Impact
54	======
55
56	Using a specially crafted XPM image an attacker could cause an affected
57	application to enter an infinite loop or trigger the overflows,
58	potentially allowing the execution of arbitrary code.
59
60	Workaround
61	==========
62
63	There is no known workaround at this time.
64
65	Resolution
66	==========
67
68	All GTK+ 2 users should upgrade to the latest version:
69
70	# emerge --sync
71	# emerge --ask --oneshot --verbose x11-libs/gtk+
72
73	All GdkPixbuf users should upgrade to the latest version:
74
75	# emerge --sync
76	# emerge --ask --oneshot --verbose ">=media-libs/gdk-pixbuf-0.22.0-r5"
77
78	References
79	==========
80
81	[ 1 ] CVE-2005-2975
82	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2975
83	[ 2 ] CVE-2005-2976
84	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2976
85	[ 3 ] CVE-2005-3186
86	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3186
87	[ 4 ] iDefense Security Advisory 11.15.05
88
89	http://www.idefense.com/application/poi/display?id=339&type=vulnerabilities
90
91	Availability
92	============
93
94	This GLSA and any updates to it are available for viewing at
95	the Gentoo Security Website:
96
97	http://security.gentoo.org/glsa/glsa-200511-14.xml
98
99	Concerns?
100	=========
101
102	Security is a primary focus of Gentoo Linux and ensuring the
103	confidentiality and security of our users machines is of utmost
104	importance to us. Any security concerns should be addressed to
105	security@g.o or alternatively, you may file a bug at
106	http://bugs.gentoo.org.
107
108	License
109	=======
110
111	Copyright 2005 Gentoo Foundation, Inc; referenced text
112	belongs to its owner(s).
113
114	The contents of this document are licensed under the
115	Creative Commons - Attribution / Share Alike license.
116
117	http://creativecommons.org/licenses/by-sa/2.0