Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2012-5576

Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.8.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large (1) red, (2) green, or (3) blue color mask in an XWD file.

Related bugs and status

CVE-2012-5576 (Candidate) is related to these bugs:

Bug #1132767: Update GIMP to version 2.8.4

Summary				In	Importance	Status
	1132767	Update GIMP to version 2.8.4		gimp (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.mandriva.co...
MISC: http://www.ubuntu.com/...
MISC: http://www.openwall.co...
MISC: http://git.gnome.org/b...
MISC: https://bugzilla.gnome...
MISC: http://lists.opensuse....
MISC: http://lists.opensuse....