Integer Overflow

The GIMP GNU Image Manipulation Program is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System XWD image dump files. A remote attacker could provide a...

openSUSE Security Update : gimp (openSUSE-SU-2012:1623-1)

Add gimp-CVE-2012-5576.patch: fix memory corruption vulnerability when reading XWD files bnc791372, bgo687392, CVE-2012-5576. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-842...

GIMP XWD File Handling Stack Buffer Overflow - Ver2 (CVE-2012-5576)

A buffer overflow vulnerability has been reported in GNU Image Manipulation Program GIMP. The vulnerability is due to insufficient validation of certain fields while parsing XWD files. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the...

SuSE 11.3 Security Update : gimp (SAT Patch Number 8856)

This update fixes the following security issues with gimp : - XWD plugin gnew integer overflow. CVE-2013-1913. bnc853423 - XWD plugin color map heap-based buffer overflow. CVE-2013-1978. bnc853425 - memory corruption via XWD files CVE-2012-5576. bnc791372 %NASLMINLEVEL 70300 C Tenable Network...

DSA-2813-1 gimp - several

Bulletin has no description...

Oracle Linux 5 / 6 : gimp (ELSA-2013-1778)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1778 advisory. - fix overflow in XWD loader CVE-2013-1913, CVE-2013-1978 Tenable has extracted the preceding description block directly from the Oracle Linux...

RHEL 5 / 6 : gimp (RHSA-2013:1778)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:1778 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based...

CentOS 5 / 6 : gimp (CESA-2013:1778)

Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

CentOS Update for gimp CESA-2013:1778 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for gimp CESA-2013:1778 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RedHat Update for gimp RHSA-2013:1778-01

Check for the Version of gimp OpenVAS Vulnerability Test RedHat Update for gimp RHSA-2013:1778-01 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

RedHat Update for gimp RHSA-2013:1778-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for gimp FEDORA-2013-2000

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2012-5576

Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.8.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large 1 red, 2 green, or 3 blue color mask in an XWD file...

CVE-2012-5576

CVE-2012-5576 affects GIMP’s XWD plug-in (file-xwd.c): multiple stack-based buffer overflows when parsing XWD files, leading to possible crash or arbitrary code execution. The issue is triggered by large color masks (red/green/blue) in XWD images. Public advisories/updates show affected GIMP vers...

KLA10168 DoS vulnerability in GIMP

A buffer overflow was found in GIMP. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XWD file. Original advisories - Related products GIMP CVE list CVE-2012-5576...

[USN-1659-1] GIMP vulnerability

========================================================================== Ubuntu Security Notice USN-1659-1 December 10, 2012 gimp vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

CVE-2012-5576

Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.8.2 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large 1 red, 2 green, or 3 blue color mask in an XWD file...