Gdk-pixbuf: uninitialized memory disclosure in gdkpixbuf gif lzw decoder
A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is encountered during decompression, the decoder sets the reported output size to the full buffer length rather than the actual number of written bytes. This logic error results in uninitialized sections of the buffer being included in the output, potentially leaking arbitrary memory contents in the processed image.
Affected products
- <2.43.2
Matching in nixpkgs
pkgs.loupe
Simple image viewer application written with GTK4 and Rust
-
nixos-unstable -
- nixpkgs-unstable 48.1
pkgs.snapshot
Take pictures and videos on your computer, tablet, or phone
-
nixos-unstable -
- nixpkgs-unstable 48.0.1
pkgs.rsnapshot
Filesystem snapshot utility for making backups of local and remote systems
-
nixos-unstable -
- nixpkgs-unstable 1.5.1
pkgs.aj-snapshot
Tool for storing/restoring JACK and/or ALSA connections to/from cml files
-
nixos-unstable -
- nixpkgs-unstable 0.9.9
pkgs.glycin-loaders
Glycin loaders for several formats
-
nixos-unstable -
- nixpkgs-unstable 1.2.3
pkgs.nix-snapshotter
Brings native understanding of Nix packages to containerd
-
nixos-unstable -
- nixpkgs-unstable 0.3.0
pkgs.btrfs-auto-snapshot
BTRFS Automatic Snapshot Service for Linux
-
nixos-unstable -
- nixpkgs-unstable 2.0.4
pkgs.zfs-prune-snapshots
Remove snapshots from one or more zpools that match given criteria
-
nixos-unstable -
- nixpkgs-unstable 1.5.0
pkgs.python312Packages.torchsnapshot
Performant, memory-efficient checkpointing library for PyTorch applications, designed with large, complex distributed workloads in mind
-
nixos-unstable -
- nixpkgs-unstable 0.1.0
pkgs.python313Packages.torchsnapshot
Performant, memory-efficient checkpointing library for PyTorch applications, designed with large, complex distributed workloads in mind
-
nixos-unstable -
- nixpkgs-unstable 0.1.0
pkgs.python312Packages.inline-snapshot
Create and update inline snapshots in Python tests
-
nixos-unstable -
- nixpkgs-unstable 0.24.0
pkgs.python312Packages.pytest-snapshot
Plugin to enable snapshot testing with pytest
-
nixos-unstable -
- nixpkgs-unstable 0.9.0
pkgs.python313Packages.inline-snapshot
Create and update inline snapshots in Python tests
-
nixos-unstable -
- nixpkgs-unstable 0.24.0
pkgs.python313Packages.pytest-snapshot
Plugin to enable snapshot testing with pytest
-
nixos-unstable -
- nixpkgs-unstable 0.9.0
pkgs.python312Packages.snapshot-restore-py
Snapshot Restore for Python library which can be used for registering runtime hooks in Snapstart enabled Python Lambda functions
-
nixos-unstable -
- nixpkgs-unstable 1.0.0
pkgs.python313Packages.snapshot-restore-py
Snapshot Restore for Python library which can be used for registering runtime hooks in Snapstart enabled Python Lambda functions
-
nixos-unstable -
- nixpkgs-unstable 1.0.0
pkgs.python312Packages.pytest-textual-snapshot
Snapshot testing for Textual applications
-
nixos-unstable -
- nixpkgs-unstable 1.1.0
pkgs.python313Packages.pytest-textual-snapshot
Snapshot testing for Textual applications
-
nixos-unstable -
- nixpkgs-unstable 1.1.0
Package maintainers
-
@mrVanDalo Ingolf Wanger <contact@ingolf-wagner.de>
-
@motiejus Motiejus Jakštys <motiejus@jakstys.lt>
-
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@bobby285271 Bobby Rong <rjl931189261@126.com>
-
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
-
@06kellyjac Jack <hello+nixpkgs@j-k.io>
-
@elpdt852 Edgar Lee <nix@pdtpartners.com>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@austinbutler Austin Butler <austinabutler@gmail.com>
-
@GaetanLepage Gaetan Lepage <gaetan@glepage.com>
-
@liberodark liberodark <liberodark@gmail.com>
-
@ymarkus Yannick Markus <nixpkgs@ymarkus.dev>