Vulnerability Details : CVE-2015-4491
Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2015-4491
- cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*
- cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdk-pixbuf:*:*:*:*:*:*:*:*When used together with: Linux » Linux Kernel
- cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-4491
1.28%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 86 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-4491
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
CWE ids for CVE-2015-4491
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-4491
-
http://www.ubuntu.com/usn/USN-2712-1
USN-2712-1: Thunderbird vulnerabilities | Ubuntu security notices
-
https://bugzilla.redhat.com/show_bug.cgi?id=1252290
1252290 – (CVE-2015-4491) CVE-2015-4491 Mozilla: Heap overflow in gdk-pixbuf when scaling bitmap images (MFSA 2015-88)Issue Tracking
-
https://bugzilla.mozilla.org/show_bug.cgi?id=1184009
1184009 - (CVE-2015-4491) gdk-pixbuf heap overflow and DoS affecting FirefoxIssue Tracking
-
http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html
openSUSE-SU-2015:1454-1: moderate: Security update for MozillaThunderbir
-
https://security.gentoo.org/glsa/201512-05
gdk-pixbuf: Multiple Vulnerabilities (GLSA 201512-05) — Gentoo security
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165732.html
[SECURITY] Fedora 21 Update: gdk-pixbuf2-2.31.6-1.fc21
-
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Oracle Solaris Third Party Bulletin - October 2015Third Party Advisory
-
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html
[security-announce] SUSE-SU-2015:1449-1: important: Security update for
-
http://lists.opensuse.org/opensuse-updates/2015-09/msg00002.html
openSUSE-SU-2015:1500-1: moderate: Security update for gdk-pixbuf
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165730.html
[SECURITY] Fedora 21 Update: mingw-gdk-pixbuf-2.31.6-1.fc21Third Party Advisory
-
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html
[security-announce] openSUSE-SU-2015:1390-1: important: Security updateThird Party Advisory
-
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Oracle Solaris Bulletin - April 2016Third Party Advisory
-
https://git.gnome.org/browse/gdk-pixbuf/commit/?id=ffec86ed5010c5a2be14f47b33bcf4ed3169a199
pixops: Be more careful about integer overflow (ffec86ed) · Commits · GNOME / gdk-pixbuf · GitLab
-
http://rhn.redhat.com/errata/RHSA-2015-1586.html
RHSA-2015:1586 - Security Advisory - Red Hat Customer Portal
-
https://bugzilla.gnome.org/show_bug.cgi?id=752297
Bug 752297 – heap overflow and DoS affecting Firefox and other programs (x86_64)Issue Tracking
-
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html
[security-announce] openSUSE-SU-2015:1389-1: important: Security updateThird Party Advisory
-
https://security.gentoo.org/glsa/201605-06
Mozilla Products: Multiple vulnerabilities (GLSA 201605-06) — Gentoo security
-
http://www.ubuntu.com/usn/USN-2722-1
USN-2722-1: GDK-PixBuf vulnerability | Ubuntu security notices
-
http://www.ubuntu.com/usn/USN-2702-1
USN-2702-1: Firefox vulnerabilities | Ubuntu security noticesThird Party Advisory
-
http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html
openSUSE-SU-2015:1453-1: moderate: Security update for MozillaThunderbir
-
http://rhn.redhat.com/errata/RHSA-2015-1694.html
RHSA-2015:1694 - Security Advisory - Red Hat Customer Portal
-
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00016.html
[security-announce] SUSE-SU-2015:1528-1: important: Security update for
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165703.html
[SECURITY] Fedora 22 Update: gdk-pixbuf2-2.31.6-1.fc22
-
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html
[security-announce] SUSE-SU-2015:2081-1: important: Security update for
-
http://www.ubuntu.com/usn/USN-2702-3
USN-2702-3: Firefox regression | Ubuntu security notices
-
http://www.securitytracker.com/id/1033247
Mozilla Firefox Multiple Flaws Let Remote Users Execute Arbitrary Code, Obtain Potentially Sensitive Information, Bypass Security Restrictions, and Conduct Cross-Site Scripting Attacks - SecurityTrack
-
http://www.debian.org/security/2015/dsa-3337
Debian -- Security Information -- DSA-3337-1 gdk-pixbuf
-
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165701.html
[SECURITY] Fedora 22 Update: mingw-gdk-pixbuf-2.31.6-1.fc22Third Party Advisory
-
http://www.securitytracker.com/id/1033372
Mozilla Thunderbird Multiple Flaws Let Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges - SecurityTracker
-
http://www.ubuntu.com/usn/USN-2702-2
USN-2702-2: Ubufox update | Ubuntu security noticesThird Party Advisory
-
http://rhn.redhat.com/errata/RHSA-2015-1682.html
RHSA-2015:1682 - Security Advisory - Red Hat Customer Portal
-
http://www.mozilla.org/security/announce/2015/mfsa2015-88.html
Heap overflow in gdk-pixbuf when scaling bitmap images — MozillaVendor Advisory
Jump to