Описание
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 2.6.7-1.1ubuntu1 |
| hardy | released | 2.4.5-1ubuntu2.1 |
| intrepid | released | 2.6.1-1ubuntu3.1 |
| jaunty | released | 2.6.6-0ubuntu1.1 |
| karmic | released | 2.6.7-1ubuntu1.1 |
| upstream | needed |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-re ...
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
9.3 Critical
CVSS2