Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-1913

Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when used with glib before 2.24, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large color entries value in an X Window System (XWD) image dump.

Related bugs and status

CVE-2013-1913 (Candidate) is related to these bugs:

Bug #1366560: Merge gimp 2.8.14-1 (main) from Debian unstable (main)

Summary				In	Importance	Status
	1366560	Merge gimp 2.8.14-1 (main) from Debian unstable (main)		gimp (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://www.debian.org/...
MISC: https://security.gento...
MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://www.ubuntu.com/...