This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
Security advisory: gtk2-x11
- From: "Yaakov S (Cygwin Ports)" <yselkowitz at users dot sourceforge dot net>
- To: cygwin-apps at cygwin dot com
- Date: Wed, 16 Nov 2005 14:46:17 -0600
- Subject: Security advisory: gtk2-x11
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gerrit,
The GdkPixbuf library, that is also included in GTK+ 2, contains
vulnerabilities that could lead to a Denial of Service or the execution
of arbitrary code.
Solution: a patch for gtk+-2.x is required (URL below).
(BTW, Gerrit, what are your plans for GTK/GNOME? I'm willing to take
stuff over if you've lost interest.)
http://www.gentoo.org/security/en/glsa/glsa-200511-14.xml
http://www.idefense.com/application/poi/display?id=339&type=vulnerabilities
http://www.gentoo.org/cgi-bin/viewcvs.cgi/x11-libs/gtk+/files/gtk+-2-xpm_loader.patch?hideattic=1
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Cygwin)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFDe5qZpiWmPGlmQSMRAgRdAJ9Fh1oRf52xEELoi0gfshs9dKXBIwCfaGGU
Ce7YghJ4hRm8rCB07c3SdgI=
=KMcX
-----END PGP SIGNATURE-----