GDK-PixBuf could be made to crash or run programs as your login if it
opened a specially crafted file.
Software Description:
- gdk-pixbuf: GDK Pixbuf library
Details:
It was discovered that the GDK-PixBuf library did not properly handle
certain BMP images. If an user or automated system were tricked into
opening a specially crafted BMP file, a remote attacker could use this flaw
to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly
execute arbitrary code.
The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS: libgdk-pixbuf2.0-0 2.32.2-1ubuntu1.6 After a standard system update you need to restart your session to make all the necessary changes.
https://ubuntu.com/security/notices/USN-3912-1
CVE-2017-12447
Get the latest Linux and open source security news straight to your inbox.