CyberSec.Space Logo
Back to CVE Browser

CVE-2011-2897

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0700%
EPSS Percentile18.08th
PublishedNov 12, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due to an input validation flaw

Affected Platforms (CPE)

πŸ“¦
Gnome

Gdk Pixbuf

<= 2.31.1
πŸ’»
Redhat

Enterprise Linux

= 4.0
πŸ’»
Redhat

Enterprise Linux

= 5.0
πŸ’»
Debian

Debian Linux

= 8.0
πŸ’»
Debian

Debian Linux

= 9.0
πŸ’»
Debian

Debian Linux

= 10.0

References & Advisories

πŸ”— https://access.redhat.com/security/cve/cve-2011-2897
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2897
πŸ”— https://security-tracker.debian.org/tracker/CVE-2011-2897
πŸ”— https://access.redhat.com/security/cve/cve-2011-2897
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2897
πŸ”— https://security-tracker.debian.org/tracker/CVE-2011-2897

Related Vulnerabilities

CVE-2021-446488.8

GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image dat...

CVE-2017-10004228.8

Gnome gdk-pixbuf 2.36.8 and older is vulnerable to several integer overflow in the gif_get_lzw function resulting in memory corrup...

CVE-2021-202408.8

A flaw was found in gdk-pixbuf in versions before 2.42.0. An integer wraparound leading to an out of bounds write can occur when a...

CVE-2017-124477.8

GdkPixBuf (aka gdk-pixbuf), possibly 2.32.2, as used by GNOME Nautilus 3.14.3 on Ubuntu 16.04, allows attackers to cause a denial ...