CVE-2025-7345
EUVD-2025-2050208.07.2025, 14:15
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.
Awaiting analysis
This vulnerability is currently awaiting analysis.
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf-devel |
| ||||||||||||||||||||||||||||
| gdk-pixbuf-lang |
| ||||||||||||||||||||||||||||
| gdk-pixbuf-query-loaders |
| ||||||||||||||||||||||||||||
| gdk-pixbuf-query-loaders-32bit |
| ||||||||||||||||||||||||||||
| gdk-pixbuf-thumbnailer |
| ||||||||||||||||||||||||||||
| libgdk_pixbuf-2_0-0 |
| ||||||||||||||||||||||||||||
| libgdk_pixbuf-2_0-0-32bit |
| ||||||||||||||||||||||||||||
| typelib-1_0-GdkPixbuf-2_0 |
| ||||||||||||||||||||||||||||
| typelib-1_0-GdkPixdata-2_0 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf2 |
| ||||||||||||||||||
| gdk-pixbuf2-devel |
| ||||||||||||||||||
| gdk-pixbuf2-modules |
| ||||||||||||||||||
| gdk-pixbuf2-xlib |
| ||||||||||||||||||
| gdk-pixbuf2-xlib-devel |
|
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| gdk-pixbuf2 |
| ||||
| gdk-pixbuf2-debuginfo |
| ||||
| gdk-pixbuf2-debugsource |
| ||||
| gdk-pixbuf2-devel |
| ||||
| gdk-pixbuf2-devel-debuginfo |
| ||||
| gdk-pixbuf2-modules |
| ||||
| gdk-pixbuf2-modules-debuginfo |
| ||||
| gdk-pixbuf2-tests |
| ||||
| gdk-pixbuf2-tests-debuginfo |
|
Azure Linux Releases
References