Wind River Support Network

HomeDefectsLIN1023-13903
Acknowledged

LIN1023-13903 : Security Advisory - gdk-pixbuf - CVE-2025-7345

Created: Jul 8, 2025    Updated: Jul 17, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

A flaw exists in gdk-pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glibâ\x80\x99s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.

CREATE(Triage):(User=admin) CVE-2025-7345 (https://nvd.nist.gov/vuln/detail/CVE-2025-7345)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube