Fluid Attacks Database

Description

GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
alpine v3.15	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.16	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.17	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.18	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.19	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.20	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.21	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
alpine v3.22	gdk-pixbuf	=2.22.0-r0 \|\| =2.22.0-r1 \|\| =2.22.0-r2 \|\| =2.22.0-r3 \|\| =2.22.1-r0 \|\| =2.22.1-r1 \|\| =2.22.1-r2 \|\| =2.22.1-r3 \|\| =2.24.0-r0 \|\| =2.24.0-r1 \|\| =2.24.0-r2 \|\| =2.26.1-r0 \|\| =2.26.1-r1 \|\| =2.26.1-r2 \|\| =2.26.4-r0 \|\| =2.26.4-r1 \|\| =2.26.5-r0 \|\| =2.28.0-r0 \|\| =2.28.2-r0 \|\| =2.28.2-r1 \|\| =2.30.0-r0 \|\| =2.30.7-r0 \|\| =2.31.5-r0 \|\| =2.32.1-r0 \|\| =2.32.2-r0 \|\| =2.34.0-r0 \|\| =2.34.0-r1 \|\| =2.34.0-r2 \|\| =2.36.0-r0 \|\| =2.36.10-r0 \|\| =2.36.11-r0 \|\| =2.36.11-r1 \|\| =2.36.11-r2 \|\| =2.36.2-r0 \|\| =2.36.5-r0 \|\| =2.36.6-r0 \|\| =2.36.6-r1 \|\| =2.36.8-r0 \|\| =2.38.1-r0 \|\| =2.38.2-r0 \|\| =2.40.0-r0 \|\| =2.40.0-r1 \|\| =2.40.0-r2 \|\| =2.42.0-r0 \|\| =2.42.2-r0 \|\| =2.42.4-r0 \|\| =2.42.6-r0 \|\| >=0 <2.42.8-r0	2.42.8-r0
debian 11	gdk-pixbuf	=2.42.2+dfsg-1 \|\| >=0 <2.42.2+dfsg-1+deb11u1	2.42.2+dfsg-1+deb11u1
debian 13	gdk-pixbuf	>=0 <2.42.9+dfsg-1	2.42.9+dfsg-1

1-10 of 14

Aliases

1. CVE-2021-446482. NVD-2021-446483. OSV-ALPINE-2021-446484. OSV-2021-446485. OSV-DEBIAN-2021-446486. SECURITY-CVE-2021-446487. SECURITY-TRACKER-CVE-2021-44648

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.