Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-1570

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/sec...
MISC: https://bugzilla.gnome...
BID: 37006
OSVDB: 59930
SECUNIA: 37232
VUPEN: ADV-2009-3228
VUPEN: ADV-2009-3564
VUPEN: ADV-2010-1021
SUSE: SUSE-SR:2010:009
REDHAT: RHSA-2011:0837
REDHAT: RHSA-2011:0838
GENTOO: GLSA-201209-23
SECUNIA: 50737
CONFIRM: http://git.gnome.org/c...
XF: gimp-readimage-bo(54254)
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20091112 Secunia Resea...

Launchpad.net

CVE 2009-1570

Related bugs

References