CVE-2011-2485

Name of the Vulnerable Software and Affected Versions gdk-pixbuf versions prior to 2.23.5 gdk-pixbuf versions prior to 2.24.1-r1

Description The issue is related to the gdk pixbuf gif image load function in gdk-pixbuf/io-gif.c, which does not properly handle certain return values. This allows remote attackers to cause a denial of service, specifically memory consumption, via a crafted GIF image file. Multiple vulnerabilities in the gdk-pixbuf package can lead to disruption of protected information availability, and exploitation can be done remotely.

Recommendations For versions prior to 2.23.5, update to version 2.23.5 or later. For versions prior to 2.24.1-r1, update to version 2.24.1-r1 or later. As a temporary workaround, consider restricting the use of the gdk pixbuf gif image load function until a patch is available.