PT-2025-28458 · Gnome+9 · Gdk-Pixbuf+10

Yifan Zhang

·

Published

2025-04-03

·

Updated

2026-04-02

·

CVE-2025-7345

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions: gdk-pixbuf (affected versions not specified) glib (affected versions not specified)
Description: A flaw exists in gdk-pixbuf and glib, specifically in the gdk pixbuf jpeg image load increment function and g base64 encode step, respectively. When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory. This could potentially cause application crashes or arbitrary code execution.
Recommendations: For gdk-pixbuf, consider disabling the gdk pixbuf jpeg image load increment function until a patch is available. For glib, restrict the use of the g base64 encode step function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Buffer Overflow

Weakness Enumeration

CWE-787CWE-120

Related Identifiers

ALSA-2025:13315
AZL-65034
AZL-65048
BDU:2025-11747
CESA-2025_13315
CVE-2025-7345
DLA-4344-1
INFSA-2025_12841
INFSA-2025_13315
OESA-2025-1913
OPENSUSE-SU-2025:15468-1
OPENSUSE-SU-2026:20084-1
RHSA-2025:12841
RHSA-2025:12862
RHSA-2025:13315
RHSA-2025:14574
RHSA-2025:14575
RHSA-2025:14576
RHSA-2025:14585
RHSA-2025:14618
RHSA-2025:14646
RHSA-2025:14647
RHSA-2025:14683
RHSA-2025_12841
RHSA-2025_13315
SUSE-SU-2025:02954-1
SUSE-SU-2025:02963-1
SUSE-SU-2025:03010-1
SUSE-SU-2025:03373-1
SUSE-SU-2025:20694-1
SUSE-SU-2025:20748-1
SUSE-SU-2025_02954-1
SUSE-SU-2025_02963-1
SUSE-SU-2025_03010-1
SUSE-SU-2025_03373-1
SUSE-SU-2026:20128-1
SUSE-SU-2026:20156-1
USN-7662-1

Affected Products

Almalinux
Centos
Debian
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Gdk-Pixbuf
Glib