CVE-2007-3126

Опубликовано: 07 фев. 2022

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.

Отчет

Red Hat does not consider a user-assisted crash of a user application such as GIMP to be a security issue.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	gimp	Out of support scope
Red Hat Enterprise Linux 7	gimp	Not affected
Red Hat Enterprise Linux 8	gimp:2.8/gimp	Not affected
Red Hat Enterprise Linux 8	gimp:flatpak/gimp	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=2051868Gimp: context-dependent attackers to cause a denial of service

EPSS

Процентиль: 74%

0.00859

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2007-3126

ubuntu

больше 18 лет назад

Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.

CVE-2007-3126

nvd

больше 18 лет назад

Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.

CVE-2007-3126

debian

больше 18 лет назад

Gimp before 2.8.22 allows context-dependent attackers to cause a denia ...

openSUSE-SU-2017:0994-1

suse-cvrf

больше 8 лет назад

Security update for gimp

SUSE-SU-2017:0945-1

suse-cvrf

больше 8 лет назад

Security update for gimp

EPSS

Процентиль: 74%

0.00859

Низкий

7.5 High

CVSS3