{"affected":[{"ecosystem_specific":{"binaries":[{"gdk-pixbuf-query-loaders":"2.42.12-150400.5.9.1","libgdk_pixbuf-2_0-0":"2.42.12-150400.5.9.1","typelib-1_0-GdkPixbuf-2_0":"2.42.12-150400.5.9.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"gdk-pixbuf","purl":"pkg:rpm/suse/gdk-pixbuf&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.42.12-150400.5.9.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for gdk-pixbuf fixes the following issues:\n\ngdk-pixbuf was updated to version 2.42.12:\n\n- Security issues fixed:\n\n  * CVE-2022-48622: Fixed heap memory corruption on gdk-pixbuf (bsc#1219276)\n\n- Changes in version 2.42.12:\n\n  + ani: Reject files with multiple INA or IART chunks,\n  + ani: validate chunk size,\n  + Updated translations.\n\n- Enable other image loaders such as xpm and xbm (bsc#1223903)\n\n- Changes in version 2.42.11:\n\n  + Disable fringe loaders by default.\n  + Introspection fixes.\n  + Updated translations.\n\n- Changes in version 2.42.10:\n\n  + Search for rst2man.py.\n  + Update the memory size limit for JPEG images.\n  + Updated translations.\n\n- Fixed loading of larger images\n- Avoid Bash specific syntax in baselibs postscript (bsc#1195391) \n","id":"SUSE-SU-2024:2077-2","modified":"2024-06-19T03:33:14Z","published":"2024-06-19T03:33:14Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20242077-2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195391"},{"type":"REPORT","url":"https://bugzilla.suse.com/1219276"},{"type":"REPORT","url":"https://bugzilla.suse.com/1223903"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-48622"}],"related":["CVE-2022-48622"],"summary":"Security update for gdk-pixbuf","upstream":["CVE-2022-48622"]}