{"id":"MGASA-2022-0402","summary":"Updated gdk-pixbuf2.0 packages fix security vulnerability","details":"GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow\nvulnerability when decoding the lzw compressed stream of image data in GIF\nfiles with lzw minimum code size equals to 12. (CVE-2021-44648)\n","modified":"2026-02-04T04:38:55.261562Z","published":"2022-11-01T22:58:59Z","related":["CVE-2021-44648"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0402.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30045"},{"type":"REPORT","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/PEKBMOO52RXONWKB6ZKKHTVPLF6WC3KF/"},{"type":"REPORT","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LAG7HNTW3KWGP2EF5FBPHDA3R5UPDYZY/"},{"type":"REPORT","url":"https://www.debian.org/security/2022/dsa-5228"},{"type":"REPORT","url":"https://ubuntu.com/security/notices/USN-5607-1"}],"affected":[{"package":{"name":"gdk-pixbuf2.0","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/gdk-pixbuf2.0?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.42.2-1.2.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0402.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}