{"id":"CVE-2013-7447","details":"Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, allows remote attackers to cause a denial of service (crash) via a large image file, which triggers a large memory allocation.","modified":"2026-04-16T01:38:26.053632613Z","published":"2016-02-17T15:59:00Z","withdrawn":"2026-01-27T04:12:22.394571Z","related":["SUSE-SU-2016:2532-1","SUSE-SU-2016:2550-1","openSUSE-SU-2024:10170-1","openSUSE-SU-2024:10522-1","openSUSE-SU-2024:10908-1"],"references":[{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2898-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2898-2"},{"type":"FIX","url":"https://git.gnome.org/browse/gtk+/tree/NEWS"},{"type":"REPORT","url":"https://bugzilla.gnome.org/show_bug.cgi?id=703220"},{"type":"REPORT","url":"https://github.com/mate-desktop/eom/issues/93"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2016-03/msg00010.html"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2016/02/10/2"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2016/02/10/6"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/83239"},{"type":"WEB","url":"https://bugs.launchpad.net/ubuntu/+source/gtk+2.0/+bug/1540811"},{"type":"WEB","url":"https://git.gnome.org/browse/gtk+/commit?id=894b1ae76a32720f4bb3d39cf460402e3ce331d6"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}