CVE-2005-2975
gdk-pixbuf - several
EPSS 11.9%
Description
io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ before 2.8.7 allows attackers to cause a denial of service (infinite loop) via a crafted XPM image with a large number of colors.
How to fix CVE-2005-2975
To remediate CVE-2005-2975, upgrade the affected package to a fixed version below.
- Debian/gdk-pixbuf—upgrade to 0.22.0-11 or later
- Debian/gdk-pixbuf—upgrade to 0.17.0-2woody3 or later
- Debian/gtk+2.0—upgrade to 2.6.10-2 or later
- Debian/gtk+2.0—upgrade to 2.0.2-5woody3 or later
Is CVE-2005-2975 being exploited?
Moderate — EPSS is 11.9%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (4)
- from 0, < 0.22.0-11
- from 0, < 0.17.0-2woody3
- from 0, < 2.6.10-2
- from 0, < 2.0.2-5woody3