Overview

File _patchinfo of Package patchinfo.5622

<patchinfo incident="5622">
  <packager>mgorse</packager>
  <issue tracker="bnc" id="966682">VUL-0: CVE-2013-7447: gtk2, gtk3: Integer overflow in image handling</issue>
  <issue tracker="cve" id="2013-7447"></issue>
  <issue tracker="bnc" id="999375">Dependency conflict for gtk2-engine-thinice-2.20.2-36.3.x86_64 in patch 5622-1.noarch for gtk2 on Leap-42.1-Test repository</issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>Security update for gtk2</summary>
  <description>
This gtk2 update to version 2.24.31 fixes the following issues:

Security issues fixed:
- CVE-2013-7447: Fixed integer overflow in image handling (boo#966682).

Bugs fixed:
- Changes from version 2.24.31:
  + Backport many file chooser entry fixes and cleanups.
  + Don't crash if invisible files are deleted.
  + Bugs fixed: bgo#555087, bgo#586367, bgo#635287, bgo#640698, 
    bgo#648419, bgo#672271, bgo#679333, bgo#687196, bgo#703220
    (CVE-2013-7447), bgo#720330, bgo#729927, bgo#737777, bgo#752707,
    bgo#756450, bgo#765120, bgo#765193, bgo#768163, bgo#764996,
    bgo#769126.

GTK2 Engine and branding packages were rebuilt to match the updated gtk2 package (boo#999375).</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places