CVE-2005-0891
Publication date 2 May 2005
Last updated 24 July 2024
Ubuntu priority
Cvss 3 Severity Score
Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.
Status
Package | Ubuntu Release | Status |
---|---|---|
gdk-pixbuf | 7.04 feisty |
Fixed 0.22.0-11
|
6.10 edgy |
Fixed 0.22.0-11
|
|
6.06 LTS dapper |
Fixed 0.22.0-11
|
|
gtk+2.0 | 7.04 feisty |
Fixed 2.10.11-0ubuntu3
|
6.10 edgy |
Fixed 2.10.6-0ubuntu3.1
|
|
6.06 LTS dapper |
Fixed 2.8.20-0ubuntu1.1
|
Severity score breakdown
Parameter | Value |
---|---|
Base score |
|
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | None |
Integrity impact | None |
Availability impact | High |
Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |