gdk-pixbuf: fix CVE-2025-7345 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Archana Polampalli <archana.polampalli@windriver.com>	2025-07-14 17:48:49 +0530
committer	Steve Sakoman <steve@sakoman.com>	2025-07-18 08:32:26 -0700
commit	de4b007ac0b3d3680e101f80f978e1040d51def3 (patch)
tree	6132ea2f046fc32f2dd997cd5d9ab6dde9b248b3 /meta/recipes-devtools/python/python3/0001-Avoid-shebang-overflow-on-python-config.py.patch
parent	86182e972c5e7308a0f01ba1c3059f792e993d61 (diff)
download	poky-de4b007ac0b3d3680e101f80f978e1040d51def3.tar.gz

gdk-pixbuf: fix CVE-2025-7345

A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution. (From OE-Core rev: 1803f965e4990be3fbdcd52544f0080e9c83800d) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/recipes-devtools/python/python3/0001-Avoid-shebang-overflow-on-python-config.py.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: