Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2020-29385

Published: 8 December 2020

GNOME gdk-pixbuf (aka GdkPixbuf) before 2.42.2 allows a denial of service (infinite loop) in lzw.c in the function write_indexes. if c->self_code equals 10, self->code_table[10].extends will assign the value 11 to c. The next execution in the loop will assign self->code_table[11].extends to c, which will give the value of 10. This will make the loop run infinitely. This bug can, for example, be triggered by calling this function with a GIF image with LZW compression that is crafted in a special way.

Notes

AuthorNote
mdeslaur
per upstream bug, gdk-pixbuf < 2.39.2 is not vulnerable

Priority

Medium

Cvss 3 Severity Score

5.5

Score breakdown

Status

Package Release Status
gdk-pixbuf
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
focal
Released (2.40.0+dfsg-3ubuntu0.1)
trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(code not present)
groovy
Released (2.40.0+dfsg-5ubuntu0.1)
Patches:
upstream: https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/commit/bdd3acbd48a575d418ba6bf1b32d7bda2fae1c81

Severity score breakdown

Parameter Value
Base score 5.5
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Scope Unchanged
Confidentiality None
Integrity impact None
Availability impact High
Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H