首页 -> 安全研究
安全研究
安全漏洞
GDK-Pixbuf多个安全漏洞
发布日期:2004-09-15
更新日期:2004-09-24
受影响系统:
GTK GTK+ 2.2.4描述:
GTK GTK+ 2.2.3
GTK GTK+ 2.2.1
GTK GTK+ 2.0.6
GTK GTK+ 2.0.2
- Debian Linux 3.0
- Mandrake Linux 9.2
- Mandrake Linux 10.0
- RedHat Enterprise Linux WS 3
- RedHat Enterprise Linux WS 2.1
- RedHat Enterprise Linux ES 3
- RedHat Enterprise Linux ES 2.1
- RedHat Enterprise Linux AS 3
- RedHat Enterprise Linux AS 2.1
- SuSE Linux 9.1
- SuSE Linux 9.0
- SuSE Linux 8.2
- SuSE Linux 8.1
BUGTRAQ ID: 11195
CVE(CAN) ID: CVE-2004-0753,CVE-2004-0782,CVE-2004-0783,CVE-2004-0788
gdk-pixbuf是Gtk使用的一个库。
gdk-pixbuf存在多个问题,远程攻击者可以利用这个漏洞进行拒绝服务或缓冲区溢出攻击。
第一个问题(CAN-2004-0753)是在尝试对BMP图象进行解码时,在部分条件下,库会进入无限循环,消耗大量CPU资源。
第二和第三个问题是当库对XPM图象进行解码时,特殊构建的图象文件可导致使用此库的应用程序崩溃或可能执行用户提供的代码。
第四个和最后一个漏洞是在尝试解析ICO图象时,特殊的ICO文件可导致应用程序崩溃。
<*来源:Chris Evans (chris@ferret.lmh.ox.ac.uk)
链接:http://security.gentoo.org/glsa/glsa-200409-28.xml
http://www.linux-mandrake.com/en/security/2004/2004-095.php
http://www.debian.org/security/2004/dsa-549
http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.1393.1
http://www.debian.org/security/2004/dsa-546
http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.1388.1
*>
建议:
厂商补丁:
Debian
------
Debian已经为此发布了安全公告(DSA-549-1、DSA-546-1)以及相应补丁:
DSA-549-1:New gtk+2.0 packages fix several vulnerabilities
链接:http://www.debian.org/security/2002/dsa-549
DSA-546-1:New gdk-pixbuf packages fix several vulnerabilities
链接:http://www.debian.org/security/2002/dsa-546
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk+2.0_2.0.2-5woody2.dsc
Size/MD5 checksum: 863 e1fb1114b9e8a2a41696f9ce87e63695
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk+2.0_2.0.2-5woody2.diff.gz
Size/MD5 checksum: 46831 2efce3a3481974044c1a6a1011954f18
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk+2.0_2.0.2.orig.tar.gz
Size/MD5 checksum: 7835836 dc80381b84458d944c5300a1672c099c
Architecture independent components:
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-doc_2.0.2-5woody2_all.deb
Size/MD5 checksum: 1378706 d2d6f488c0a77c93ed5a8fd151741543
Alpha architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 220806 d754d0cecc3f82d64be319c55dff5c8e
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 1102 d3ccf8d6e3b666f6dc71c35f20a6cb77
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 1585238 13f238596d197ad27933c3f3e27269f7
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 595896 57264f5be6eb488ea9607cd2f7058e08
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 5878498 0ffc094ffe8ef6fdd11b38484ea90477
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_alpha.deb
Size/MD5 checksum: 178322 14de2746abdb546a703aeec243e28a12
ARM architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 214610 c2a2b4874321a68a912afcac8efe4432
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 1106 d78aba4e1a787ac217dc055dc8e5d77a
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 1419902 92ed65acd376e565968d534df0e56b4f
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 595286 a8f465878ea70bb232fc4fc7d460462d
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 2904044 843cba67b1831b001b9186c11d7d5c72
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_arm.deb
Size/MD5 checksum: 177272 f02861b5aa96ea782f041db0ba00fe11
Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 214932 abd81a3388a82c15364189b0321c931a
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 1102 6a63e94e140d45afd8d30f1a6aeaf4fa
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 1289428 a1f0196674f1556a9700a29912ed4b77
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 595384 485b9ec09c0ddfa5564b25c2fcec58f7
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 2722306 a59b27568500db9dcd8a2ffbf2866f2b
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_i386.deb
Size/MD5 checksum: 177140 245e88cb2addad57e7273b76fb145930
Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 230652 df3f392fc1d8f749134f03413e6b07b3
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 1098 9f692a19e0d16699852bf7c16de2a05b
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 2076782 8b4e1e4a232881916a2da1f39f3bff18
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 596736 fbaedfd29974d78a92de77666be3ca6a
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 9450414 6c1356d0a6caac17bcfee6794c7eb0e3
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_ia64.deb
Size/MD5 checksum: 178702 a248446a3b02a0a3bc7695bc364423d0
HP Precision architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 220414 5541da711355e2a8f43e9fc113ef0768
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 1104 527a4a2a3c489297eeb7ba3cbfd438a4
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 1718082 f4f7d125622fb444f1e4f0cedc8a4e2d
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 595658 50ed99e08d60d5de0abbdb1d26775c26
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 3317262 ba0fa17d9fa8b56a0f55b59e6768bfa7
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_hppa.deb
Size/MD5 checksum: 177784 fa9a3da8d0bcc4786c2c1ddea49dc75d
Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 214628 952fad1b5e2cf93ceda4d5d63e19f765
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 1108 8ced141cb0b5be513e6c6561d12c5a63
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 1331140 e2aba56732d36042f31066ddf8c028d8
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 595398 9b672797a3c23ee8a2f8a3efc71d3c71
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 2833708 f651eb5d6120d31e7f3928e74aba8980
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_m68k.deb
Size/MD5 checksum: 177030 9845cbf7bf9e07645dcb77274b5c33ab
Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 215928 d7588d79c18352e3338f2f4e63d5965a
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 1106 7cf40a77a0343f3e5a31ded6dc331490
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 1384582 1dfc5eb807003319d401f80c94c6bf90
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 595756 3ef292a9f9f3dec4a2c141673881ed96
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 4934272 a54b24f1384ed35991e791dc307a69ba
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_mips.deb
Size/MD5 checksum: 177508 35d84c694be2215cc97aaf7142446949
Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 215604 5cc6dd64570c935fd94dee4f087233e7
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 1104 fe87437ef7062d2f594a8939f4fc32d5
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 1375248 f06ee4d4dfa8c6f83da5463e1d6c68e0
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 595704 0843d132d11c21f4dacc713cce9bfe86
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 4789102 a8434a64c728d1681e0cb67579f57115
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_mipsel.deb
Size/MD5 checksum: 177524 2c4c179ee681e7bc9660b5779c1cd789
PowerPC architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 214682 98b2500d59c65aba8ee0b11182075ee7
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 1106 dc96de399a2ff8b240b3c617aed8eec9
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 1504824 62e8dd6e29202ec7b93125608e0843de
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 595492 2149f524cfd0d8c000d9b898558adf2f
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 2980810 1fb39be5851af4c2b7bed18211f07f7f
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_powerpc.deb
Size/MD5 checksum: 177308 50c27f03e3cbb55460682bb4cc78f288
IBM S/390 architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 217456 f09ceaad55029059c3c0881d810f0588
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 1102 13c51d35dd739aa20cde20ac8407c264
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 1446606 fed3c63829a9f11ca862cec3561f3460
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 595662 ce432586ed7c73c0d5e8bda255b4d4af
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 3004760 251ada8d3dd7f4390d48c6fd1b00f85b
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_s390.deb
Size/MD5 checksum: 177364 4085419a638670f3e6a227b073bcfe9d
Sun Sparc architecture:
http://security.debian.org/pool/updates/main/g/gtk+2.0/gtk2.0-examples_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 215616 e4b0fca8e9a4d954713615b223036a25
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk-common_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 1102 75aefe007d272f0d459848aa984d76ed
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-0_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 1434138 47f684ef7bb814f884efb45a4dc7ef51
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-common_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 595332 6684502ffc4b161929b3c0996f5e436f
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dbg_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 2872322 a69e4200c018c48c1bfd4c4d140891dc
http://security.debian.org/pool/updates/main/g/gtk+2.0/libgtk2.0-dev_2.0.2-5woody2_sparc.deb
Size/MD5 checksum: 177178 3e2de7e036b45561d918905d08720ae8
Source archives:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0-2woody2.dsc
Size/MD5 checksum: 706 3cc56516d717be2ce80caf00a7801748
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0-2woody2.diff.gz
Size/MD5 checksum: 19285 a5a7762e36a8b172f9e66709ec23adcd
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/gdk-pixbuf_0.17.0.orig.tar.gz
Size/MD5 checksum: 547194 021914ad9104f265527c28220315e542
Alpha architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_alpha.deb
Size/MD5 checksum: 177060 279cbc10c636658467f3f0399aa143b7
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_alpha.deb
Size/MD5 checksum: 9722 43600435d5bc6aab0613544693151248
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_alpha.deb
Size/MD5 checksum: 8874 81163f83dd6375b295bcd080293b508a
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_alpha.deb
Size/MD5 checksum: 193636 7f2f524d42131e607ee0fdf7eab21c8e
ARM architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_arm.deb
Size/MD5 checksum: 156888 247743e5c98c50c236fe8881d525a9e2
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_arm.deb
Size/MD5 checksum: 8142 5763a1963ad9544d4e6825eaa5787047
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_arm.deb
Size/MD5 checksum: 7288 e7dddce3c14109a08b6bcd1ca2b7495c
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_arm.deb
Size/MD5 checksum: 161318 79938be443732c5f7add7c54984c8771
Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_i386.deb
Size/MD5 checksum: 147634 a8acb10f8485d0f46257a06a8a07bb45
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_i386.deb
Size/MD5 checksum: 7602 2ce52283726d0ac94f4db8075eec6f24
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_i386.deb
Size/MD5 checksum: 7146 a0cf92a722c6125c2c4de312f25283e9
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_i386.deb
Size/MD5 checksum: 151454 83e9903d762952eb4f37a8894db27113
Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_ia64.deb
Size/MD5 checksum: 194964 5bcf490f3b65cbe85f25fedda3ad9bca
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_ia64.deb
Size/MD5 checksum: 11016 c43a72253d262d345fe18a6af37a8463
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_ia64.deb
Size/MD5 checksum: 11070 e9a001c2709caa51b8093942711647e4
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_ia64.deb
Size/MD5 checksum: 229470 ed2b1e4cb830bf7b6518580560e948cf
HP Precision architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_hppa.deb
Size/MD5 checksum: 181318 1be47304016ae08cb2aaf874a1c23595
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_hppa.deb
Size/MD5 checksum: 9638 5eb751003626768ca9c5162a6c956748
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_hppa.deb
Size/MD5 checksum: 9314 cbe69c3c2aa9f111f225da90b1f88142
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_hppa.deb
Size/MD5 checksum: 189910 2d63ccaa4567281505319e570eb28052
Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_m68k.deb
Size/MD5 checksum: 142148 2b56601acbdbe62447a0b8222f04f32d
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_m68k.deb
Size/MD5 checksum: 7308 f105f85118d7d2e7e64beb15f1edfd3a
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_m68k.deb
Size/MD5 checksum: 7030 c99be5492c71c4b06ec47a0e131f910d
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_m68k.deb
Size/MD5 checksum: 156408 5f844e43fb3645802a9cf0848e929074
Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_mips.deb
Size/MD5 checksum: 167560 8cc8f41bbe9b5e8bc5a16fd4bd2355e9
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mips.deb
Size/MD5 checksum: 9566 996c4d6ba55b275f67e129312775866f
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_mips.deb
Size/MD5 checksum: 8270 b7ceb187fdb72c6d2f9190c4e1ac6803
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_mips.deb
Size/MD5 checksum: 165278 247d7804a0d275c9f06b6a70fba5c990
Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_mipsel.deb
Size/MD5 checksum: 168116 fff2704f2ab052b09c6efe885fc4ac9b
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_mipsel.deb
Size/MD5 checksum: 9482 915611160e8c6e7b56a63b405705e2cc
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_mipsel.deb
Size/MD5 checksum: 8122 cedb46e7c6949508455b4e2cf6d2ab64
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_mipsel.deb
Size/MD5 checksum: 165452 95ef85acba0495ea804dbceaa3d194f9
PowerPC architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_powerpc.deb
Size/MD5 checksum: 166110 76dfd7b42b1f2980a888505461b1fba5
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_powerpc.deb
Size/MD5 checksum: 9248 b6979133bf009a1b34ef00407546563c
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_powerpc.deb
Size/MD5 checksum: 8072 1dc256cb98fcef2f2fe66d887dbe3f1d
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_powerpc.deb
Size/MD5 checksum: 171118 f75945d7015087d7671512d7c843889c
IBM S/390 architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_s390.deb
Size/MD5 checksum: 153494 02968dda9991f11e736a8f67ab31041f
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_s390.deb
Size/MD5 checksum: 7858 2fede104ce269e4c2c7d86f18368a181
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_s390.deb
Size/MD5 checksum: 7564 626a7c5fa143002b72930b08d0259b8f
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_s390.deb
Size/MD5 checksum: 167354 abd0019162d198d1e6485a8661cc17c9
Sun Sparc architecture:
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-dev_0.17.0-2woody2_sparc.deb
Size/MD5 checksum: 161154 64d01e6702c95b8dec9e21e9cd846527
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome-dev_0.17.0-2woody2_sparc.deb
Size/MD5 checksum: 8270 45fcd5861d90a258b715ed7ad8458bab
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf-gnome2_0.17.0-2woody2_sparc.deb
Size/MD5 checksum: 7502 04cd802ed9d51e1889a3200bd28990ca
http://security.debian.org/pool/updates/main/g/gdk-pixbuf/libgdk-pixbuf2_0.17.0-2woody2_sparc.deb
Size/MD5 checksum: 167018 b1009ca14d8ef9f42a6568d6ac7f3e81
补丁安装方法:
1. 手工安装补丁包:
首先,使用下面的命令来下载补丁软件:
# wget url (url是补丁下载链接地址)
然后,使用下面的命令来安装补丁:
# dpkg -i file.deb (file是相应的补丁名)
2. 使用apt-get自动安装补丁包:
首先,使用下面的命令更新内部数据库:
# apt-get update
然后,使用下面的命令安装更新软件包:
# apt-get upgrade
MandrakeSoft
------------
MandrakeSoft已经为此发布了一个安全公告(MDKSA-2004:095-1)以及相应补丁:
MDKSA-2004:095-1:Updated gdk-pixbuf and gtk+2 packages fix image loading vulnerabilities
链接:http://www.linux-mandrake.com/en/security/2004/2004-095.php
补丁下载:
Updated Packages:
Mandrakelinux 10.0:
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/gdk-pixbuf-loaders-0.22.0-2.2.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk-pixbuf-xlib2-0.22.0-2.2.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk-pixbuf2-0.22.0-2.2.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk-pixbuf2-devel-0.22.0-2.2.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/SRPMS/gdk-pixbuf-0.22.0-2.2.100mdk.src.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/gtk+2.0-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk_pixbuf2.0_0-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgtk+-x11-2.0_0-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgtk+2.0_0-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/RPMS/libgtk+2.0_0-devel-2.2.4-10.1.100mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/10.0/SRPMS/gtk+2.0-2.2.4-10.1.100mdk.src.rpm
Mandrakelinux 10.0/AMD64:
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/gdk-pixbuf-loaders-0.22.0-2.2.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk-pixbuf-xlib2-0.22.0-2.2.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk-pixbuf2-0.22.0-2.2.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk-pixbuf2-devel-0.22.0-2.2.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/SRPMS/gdk-pixbuf-0.22.0-2.2.100mdk.src.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/gtk+2.0-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk_pixbuf2.0_0-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gdk_pixbuf2.0_0-devel-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gtk+-linuxfb-2.0_0-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gtk+-linuxfb-2.0_0-devel-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gtk+-x11-2.0_0-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gtk+2.0_0-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/RPMS/lib64gtk+2.0_0-devel-2.2.4-10.1.100mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/10.0/SRPMS/gtk+2.0-2.2.4-10.1.100mdk.src.rpm
Mandrakelinux 9.2:
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/gdk-pixbuf-loaders-0.22.0-2.2.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk-pixbuf-xlib2-0.22.0-2.2.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk-pixbuf2-0.22.0-2.2.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk-pixbuf2-devel-0.22.0-2.2.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/SRPMS/gdk-pixbuf-0.22.0-2.2.92mdk.src.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/gtk+2.0-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk_pixbuf2.0_0-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgdk_pixbuf2.0_0-devel-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgtk+-linuxfb-2.0_0-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgtk+-linuxfb-2.0_0-devel-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgtk+-x11-2.0_0-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgtk+2.0_0-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/RPMS/libgtk+2.0_0-devel-2.2.4-2.1.92mdk.i586.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/9.2/SRPMS/gtk+2.0-2.2.4-2.1.92mdk.src.rpm
Mandrakelinux 9.2/AMD64:
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/gdk-pixbuf-loaders-0.22.0-2.2.92mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.2.92mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/lib64gdk-pixbuf-xlib2-0.22.0-2.2.92mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/lib64gdk-pixbuf2-0.22.0-2.2.92mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/lib64gdk-pixbuf2-devel-0.22.0-2.2.92mdk.amd64.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/SRPMS/gdk-pixbuf-0.22.0-2.2.92mdk.src.rpm
ftp://download.sourceforge.net/pub/mirrors/mandrake/updates/amd64/9.2/RPMS/gtk+2.0-2.2.4-2.1.92mdk.amd64.rpm
上述升级软件还可以在下列地址中的任意一个镜像ftp服务器上下载:
http://www.mandrakesecure.net/en/ftp.php
RedHat
------
RedHat已经为此发布了一个安全公告(RHSA-2004:466-01、RHSA-2004:447-01)以及相应补丁:
RHSA-2004:466-01:Updated gtk2 packages fix security flaws and bugs
链接:http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.1393.1
RHSA-2004:447-01:Updated gdk-pixbuf packages fix security flaws
链接:http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.1388.1
补丁下载:
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gtk2-2.2.4-8.1.src.rpm
6ac62a2aeab6c7a99ff4b3a657530f89 gtk2-2.2.4-8.1.src.rpm
i386:
37607c300bef5d9dd9858474031f582c gtk2-2.2.4-8.1.i386.rpm
2d0c1fe11fc0a9a165debb0cbac24b4e gtk2-devel-2.2.4-8.1.i386.rpm
ia64:
b3b57ef2a9b4c577cad9639fd194db14 gtk2-2.2.4-8.1.ia64.rpm
cf89006e9943f4b23aeb7a410c91c542 gtk2-devel-2.2.4-8.1.ia64.rpm
ppc:
766df9da1dca48a5f110dc96b9c29015 gtk2
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.2E.src.rpm
4a81129ce3485da48cd8ea297484f739 gdk-pixbuf-0.22.0-11.1.2E.src.rpm
i386:
fc37808aea44dc57f6d44c8258405108 gdk-pixbuf-0.22.0-11.1.2E.i386.rpm
ecfafbfbb95758bddeb1c2a59df944ef gdk-pixbuf-devel-0.22.0-11.1.2E.i386.rpm
190e0a2bad3002a43410c482257ba11d gdk-pixbuf-gnome-0.22.0-11.1.2E.i386.rpm
ia64:
e9bfb39f870342cccc68f5b2aa24d681 gdk-pixbuf-0.22.0-11.1.2E.ia64.rpm
18b5513c5da53b975683c891c9ab9ee7 gdk-pixbuf-devel-0.22.0-11.1.2E.ia64.rpm
cd9f8918bc7b5ac8ebaa76b3639191aa gdk-pixbuf-gnome-0.22.0-11.1.2E.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.2E.src.rpm
4a81129ce3485da48cd8ea297484f739 gdk-pixbuf-0.22.0-11.1.2E.src.rpm
ia64:
e9bfb39f870342cccc68f5b2aa24d681 gdk-pixbuf-0.22.0-11.1.2E.ia64.rpm
18b5513c5da53b975683c891c9ab9ee7 gdk-pixbuf-devel-0.22.0-11.1.2E.ia64.rpm
cd9f8918bc7b5ac8ebaa76b3639191aa gdk-pixbuf-gnome-0.22.0-11.1.2E.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.2E.src.rpm
4a81129ce3485da48cd8ea297484f739 gdk-pixbuf-0.22.0-11.1.2E.src.rpm
i386:
fc37808aea44dc57f6d44c8258405108 gdk-pixbuf-0.22.0-11.1.2E.i386.rpm
ecfafbfbb95758bddeb1c2a59df944ef gdk-pixbuf-devel-0.22.0-11.1.2E.i386.rpm
190e0a2bad3002a43410c482257ba11d gdk-pixbuf-gnome-0.22.0-11.1.2E.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.2E.src.rpm
4a81129ce3485da48cd8ea297484f739 gdk-pixbuf-0.22.0-11.1.2E.src.rpm
i386:
fc37808aea44dc57f6d44c8258405108 gdk-pixbuf-0.22.0-11.1.2E.i386.rpm
ecfafbfbb95758bddeb1c2a59df944ef gdk-pixbuf-devel-0.22.0-11.1.2E.i386.rpm
190e0a2bad3002a43410c482257ba11d gdk-pixbuf-gnome-0.22.0-11.1.2E.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.3.2.src.rpm
65da3d6c0ca50364821dba20c3d4a38e gdk-pixbuf-0.22.0-11.1.3.2.src.rpm
i386:
4ebeee89a843d3a1469c7aa8be99f055 gdk-pixbuf-0.22.0-11.1.3.2.i386.rpm
c6a539c6dbde002645651a60d1f868ba gdk-pixbuf-devel-0.22.0-11.1.3.2.i386.rpm
10a3a14fef750fd9bc77b6e2f83c0419 gdk-pixbuf-gnome-0.22.0-11.1.3.2.i386.rpm
ia64:
248641551811128fc518b6ef2e6921df gdk-pixbuf-0.22.0-11.1.3.2.ia64.rpm
ff62cbf4cf801fc44c700267585165e7 gdk-pixbuf-devel-0.22.0-11.1.3.2.ia64.rpm
5edd61801e36db3a7b7259ef33d701d3 gdk-pixbuf-gnome-0.22.0-11.1.3.2.ia64.rpm
ppc:
0bcd881f394f8563e1ff97243f9e904e gdk-pixbuf-0.22.0-11.1.3.2.ppc.rpm
9bc4a86012d86bb1cb5b97f3eccecd20 gdk-pixbuf-devel-0.22.0-11.1.3.2.ppc.rpm
4a28f50a8efa26f27436a81523a112d2 gdk-pixbuf-gnome-0.22.0-11.1.3.2.ppc.rpm
s390:
62fc1252743b4582758421103a908600 gdk-pixbuf-0.22.0-11.1.3.2.s390.rpm
9237691771a9195d4a9ac6eb9c7c7e64 gdk-pixbuf-devel-0.22.0-11.1.3.2.s390.rpm
592e3265dedd9dc597135fe8b1aafc7f gdk-pixbuf-gnome-0.22.0-11.1.3.2.s390.rpm
s390x:
855c7c984c3cbf7782b3c66f5d619d4e gdk-pixbuf-0.22.0-11.1.3.2.s390x.rpm
9ac9638729458931a9598edd4f5af4db gdk-pixbuf-devel-0.22.0-11.1.3.2.s390x.rpm
48a01e36226b57f427bfa81ad77b3f42 gdk-pixbuf-gnome-0.22.0-11.1.3.2.s390x.rpm
x86_64:
df298cd9bcde6179413957bfb352e954 gdk-pixbuf-0.22.0-11.1.3.2.x86_64.rpm
43eda80058f5a1e2a8c6600e9ea0ca27 gdk-pixbuf-devel-0.22.0-11.1.3.2.x86_64.rpm
9a2081a1e1c2f592103d173108558cbc gdk-pixbuf-gnome-0.22.0-11.1.3.2.x86_64.rpm
Red Hat Desktop version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/gdk-pixbuf-0.22.0-11.1.3.2.src.rpm
65da3d6c0ca50364821dba20c3d4a38e gdk-pixbuf-0.22.0-11.1.3.2.src.rpm
i386:
4ebeee89a843d3a1469c7aa8be99f055 gdk-pixbuf-0.22.0-11.1.3.2.i3
可使用下列命令安装补丁:
rpm -Fvh [文件名]
Gentoo
------
http://www.debian.org/security/2004/dsa-549
浏览次数:4425
严重程度:0(网友投票)
绿盟科技给您安全的保障