{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199728?format=json","vulnerability_id":"VCID-mbsz-xfhn-c3ax","summary":"Integer overflow in pixbuf_create_from_xpm (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, allows remote attackers to execute arbitrary code via certain n_col and cpp values that enable a heap-based buffer overflow.  NOTE: this identifier is ONLY for gtk+.  It was incorrectly referenced in an advisory for a different issue (CVE-2004-0687).","aliases":[{"alias":"CVE-2004-0782"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/42939?format=json","purl":"pkg:deb/debian/gdk-pixbuf@0.22.0-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@0.22.0-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1072707?format=json","purl":"pkg:deb/debian/gdk-pixbuf@0.22.0-8.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-2apt-k2j3-ukf7"},{"vulnerability":"VCID-2jgj-ybsj-zkct"},{"vulnerability":"VCID-2jm4-w5we-tudy"},{"vulnerability":"VCID-3jh8-85sa-73cv"},{"vulnerability":"VCID-3ufr-8tsq-a3hv"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5msa-6vgs-cqew"},{"vulnerability":"VCID-5p5x-x3f4-rqbn"},{"vulnerability":"VCID-6nur-daxe-1ye6"},{"vulnerability":"VCID-7p1e-f5tb-euhu"},{"vulnerability":"VCID-8krh-atfw-1yfu"},{"vulnerability":"VCID-9max-1xuy-tqgh"},{"vulnerability":"VCID-9y7d-n7hf-t3g5"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-cqek-hxny-bbde"},{"vulnerability":"VCID-fmhd-xdus-17hy"},{"vulnerability":"VCID-fns7-51eb-83gy"},{"vulnerability":"VCID-jp9w-u8k3-r3ck"},{"vulnerability":"VCID-k8wh-njw1-w3cg"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-m9hg-t8m7-8yfz"},{"vulnerability":"VCID-ncw9-6uev-mbfe"},{"vulnerability":"VCID-tvp3-vub7-akgk"},{"vulnerability":"VCID-wjkb-v81q-vuc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@0.22.0-8.1"},{"url":"http://public2.vulnerablecode.io/api/packages/42936?format=json","purl":"pkg:deb/debian/gdk-pixbuf@2.42.2%2Bdfsg-1%2Bdeb11u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@2.42.2%252Bdfsg-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42934?format=json","purl":"pkg:deb/debian/gdk-pixbuf@2.42.10%2Bdfsg-1%2Bdeb12u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@2.42.10%252Bdfsg-1%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42938?format=json","purl":"pkg:deb/debian/gdk-pixbuf@2.42.12%2Bdfsg-4%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@2.42.12%252Bdfsg-4%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/42937?format=json","purl":"pkg:deb/debian/gdk-pixbuf@2.44.6%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@2.44.6%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44678?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.4.9-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.4.9-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1081660?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.6.4-3.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5yex-73gd-8udp"},{"vulnerability":"VCID-7nw5-2b6y-8qa7"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-j41b-9bqv-ufd4"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-x1fh-b35f-y3ga"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.6.4-3.2"},{"url":"http://public2.vulnerablecode.io/api/packages/44679?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44677?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44681?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44680?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-10%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1072706?format=json","purl":"pkg:deb/debian/gdk-pixbuf@0.17.0-2woody2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ba9-x2ud-n3gv"},{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-2apt-k2j3-ukf7"},{"vulnerability":"VCID-2jgj-ybsj-zkct"},{"vulnerability":"VCID-2jm4-w5we-tudy"},{"vulnerability":"VCID-3jh8-85sa-73cv"},{"vulnerability":"VCID-3ufr-8tsq-a3hv"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-4xu9-zsdv-7ucd"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5msa-6vgs-cqew"},{"vulnerability":"VCID-5p5x-x3f4-rqbn"},{"vulnerability":"VCID-6nur-daxe-1ye6"},{"vulnerability":"VCID-7p1e-f5tb-euhu"},{"vulnerability":"VCID-8krh-atfw-1yfu"},{"vulnerability":"VCID-9max-1xuy-tqgh"},{"vulnerability":"VCID-9y7d-n7hf-t3g5"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-cqek-hxny-bbde"},{"vulnerability":"VCID-fmhd-xdus-17hy"},{"vulnerability":"VCID-fns7-51eb-83gy"},{"vulnerability":"VCID-jp9w-u8k3-r3ck"},{"vulnerability":"VCID-k8wh-njw1-w3cg"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-m9hg-t8m7-8yfz"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-ncw9-6uev-mbfe"},{"vulnerability":"VCID-smua-cuw2-7bcu"},{"vulnerability":"VCID-tvp3-vub7-akgk"},{"vulnerability":"VCID-wjkb-v81q-vuc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gdk-pixbuf@0.17.0-2woody2"},{"url":"http://public2.vulnerablecode.io/api/packages/1081659?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.0.2-5woody2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-4xu9-zsdv-7ucd"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5yex-73gd-8udp"},{"vulnerability":"VCID-7nw5-2b6y-8qa7"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-j41b-9bqv-ufd4"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"},{"vulnerability":"VCID-x1fh-b35f-y3ga"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.0.2-5woody2"},{"url":"http://public2.vulnerablecode.io/api/packages/371230?format=json","purl":"pkg:rpm/redhat/gdk-pixbuf@1:0.22.0-11.3?arch=3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ba9-x2ud-n3gv"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gdk-pixbuf@1:0.22.0-11.3%3Farch=3"},{"url":"http://public2.vulnerablecode.io/api/packages/371231?format=json","purl":"pkg:rpm/redhat/gtk2@2.2.4-8?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ba9-x2ud-n3gv"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gtk2@2.2.4-8%3Farch=1"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0782.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0782.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0782","reference_id":"","reference_type":"","scores":[{"value":"0.31086","scoring_system":"epss","scoring_elements":"0.96864","published_at":"2026-06-11T12:55:00Z"},{"value":"0.31086","scoring_system":"epss","scoring_elements":"0.96875","published_at":"2026-06-12T12:55:00Z"},{"value":"0.31086","scoring_system":"epss","scoring_elements":"0.96877","published_at":"2026-06-13T12:55:00Z"},{"value":"0.31086","scoring_system":"epss","scoring_elements":"0.96878","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0782"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617283","reference_id":"1617283","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617283"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:447","reference_id":"RHSA-2004:447","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:447"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:466","reference_id":"RHSA-2004:466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:466"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.3","risk_score":0.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbsz-xfhn-c3ax"}