Issue Details (XML | Word | Printable)

Key: FL-457
Type: Bug Bug
Status: Resolved Resolved
Resolution: Fixed
Priority: Normal Normal
Assignee: Jonathan Smith
Reporter: Jonathan Smith
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Foresight Linux

gimp multiple issues CVE-2006-4519 CVE-2007-2949

Created: 01/Aug/07 04:41 PM   Updated: 01/Aug/07 04:53 PM
Component/s: None
Affects Version/s: 1.3.2
Fix Version/s: None
Security Level: Public (Everyone can see this issue)

Time Tracking:
Not Specified


 Description  « Hide

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.

Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value.



 All   Comments   Work Log   Change History      Sort Order: Ascending order - Click to sort in descending order
Jonathan Smith added a comment - 01/Aug/07 04:53 PM
fixed with gimp=/foresight.rpath.org@fl:1-devel//1/2.3.19-1-1