========================================================================== Ubuntu Security Notice USN-4663-1 December 08, 2020
gdk-pixbuf vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.10 - Ubuntu 20.04 LTS Summary: GDK-PixBuf could be made to hang if it opened a specially crafted file. Software Description: - gdk-pixbuf: GDK Pixbuf library Details: Melvin Kool discovered that the GDK-PixBuf library did not properly handle certain GIF images. If an user or automated system were tricked into opening a specially crafted GIF file, a remote attacker could use this flaw to cause GDK-PixBuf to hang, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: libgdk-pixbuf2.0-0 2.40.0+dfsg-5ubuntu0.1 Ubuntu 20.04 LTS: libgdk-pixbuf2.0-0 2.40.0+dfsg-3ubuntu0.1 After a standard system update you need to restart your session to make all the necessary changes. References: https://usn.ubuntu.com/4663-1 CVE-2020-29385 Package Information: https://launchpad.net/ubuntu/+source/gdk-pixbuf/2.40.0+dfsg-5ubuntu0.1 https://launchpad.net/ubuntu/+source/gdk-pixbuf/2.40.0+dfsg-3ubuntu0.1
OpenPGP_signature
Description: OpenPGP digital signature
-- ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
