CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
34.0%
CentOS Errata and Security Advisory CESA-2007:0019
The gtk2 package contains the GIMP ToolKit (GTK+), a library for creating
graphical user interfaces for the X Window System.
A bug was found in the way the gtk2 GdkPixbufLoader() function processed
invalid input. Applications linked against gtk2 could crash if they
loaded a malformed image file. (CVE-2007-0010)
Users of gtk2 are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-January/075643.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075644.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075645.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075646.html
Affected packages:
gtk2
gtk2-devel
Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0019
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 4 | ia64 | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.ia64.rpm |
CentOS | 4 | ia64 | gtk2-devel | < 2.4.13-22 | gtk2-devel-2.4.13-22.ia64.rpm |
CentOS | 4 | s390 | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.s390.rpm |
CentOS | 4 | s390 | gtk2-devel | < 2.4.13-22 | gtk2-devel-2.4.13-22.s390.rpm |
CentOS | 4 | s390x | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.s390x.rpm |
CentOS | 4 | s390x | gtk2-devel | < 2.4.13-22 | gtk2-devel-2.4.13-22.s390x.rpm |
CentOS | 4 | i386 | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.i386.rpm |
CentOS | 4 | x86_64 | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.x86_64.rpm |
CentOS | 4 | x86_64 | gtk2-devel | < 2.4.13-22 | gtk2-devel-2.4.13-22.x86_64.rpm |
CentOS | 4 | i386 | gtk2 | < 2.4.13-22 | gtk2-2.4.13-22.i386.rpm |