Executive Summary
Summary | |
---|---|
Title | libgtk2-perl security update |
Informations | |||
---|---|---|---|
Name | DSA-3173 | First vendor Publication | 2015-02-25 |
Vendor | Debian | Last vendor Modification | 2015-02-25 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : | |||
---|---|---|---|
Cvss Base Score | Not Defined | Attack Range | Not Defined |
Cvss Impact Score | Not Defined | Attack Complexity | Not Defined |
Cvss Expoit Score | Not Defined | Authentication | Not Defined |
Calculate full CVSS 2.0 Vectors scores |
Detail
It was discovered that libgtk2-perl, a Perl interface to the 2.x series of the Gimp Toolkit library, incorrectly frees memory which GTK+ still holds onto and might access later, leading to denial of service (application crash) or, potentially, to arbitrary code execution. For the stable distribution (wheezy), this problem has been fixed in version 2:1.244-1+deb7u1. For the upcoming stable distribution (jessie), this problem has been fixed in version 2:1.2492-4. For the unstable distribution (sid), this problem has been fixed in version 2:1.2492-4. We recommend that you upgrade your libgtk2-perl packages. |
Original Source
Url : http://www.debian.org/security/2015/dsa-3173 |
Alert History
Date | Informations |
---|---|
2015-02-27 13:24:30 |
|
2015-02-25 21:24:20 |
|