Integer Overflow

The GIMP GNU Image Manipulation Program is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System XWD image dump files. A remote attacker could provide a...

Oracle Linux 7 : gimp (ELSA-2016-2589)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2589 advisory. - avoid buffer overflows in file-xwd plug-in CVE-2013-1913, CVE-2013-1978 gimp-help Tenable has extracted the preceding description block directly from the Orac...

SuSE 11.3 Security Update : gimp (SAT Patch Number 8856)

This update fixes the following security issues with gimp : - XWD plugin gnew integer overflow. CVE-2013-1913. bnc853423 - XWD plugin color map heap-based buffer overflow. CVE-2013-1978. bnc853425 - memory corruption via XWD files CVE-2012-5576. bnc791372 %NASLMINLEVEL 70300 C Tenable Network...

GIMP XWD File Handling Heap Buffer Overflow (CVE-2013-1978)

A heap buffer overflow vulnerability leading to code execution has been reported in GNU Image Manipulation Program GIMP. The vulnerability is due to insufficient validation of certain fields while parsing XWD files. Remote attackers can exploit this vulnerability by enticing the target user to op...

Fedora Update for gimp FEDORA-2013-22771

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for gimp USN-2051-1

Check for the Version of gimp OpenVAS Vulnerability Test $Id: gbubuntuUSN20511.nasl 8456 2018-01-18 06:58:40Z teissa $ Ubuntu Update for gimp USN-2051-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)

This update fixes buffer overflows in the XWD loader. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

CVE-2013-1978

CVE-2013-1978 is a heap-based buffer overflow in the GIMP XWD plugin (read_xwd_cols) affecting GIMP 2.6.9 and earlier. An XWD image dump with more colors than the color map entries can cause a crash and may allow arbitrary code execution. The vulnerability is tied to the X Window Dump (XWD) plugi...

CVE-2013-1978

Heap-based buffer overflow in the readxwdcols function in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an X Window System XWD image dump with more colors than color map...

[SECURITY] [DSA 2813-1] gimp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2813-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 09, 2013 http://www.debian.org/security/faq -...

[USN-2051-1] GIMP vulnerability

========================================================================== Ubuntu Security Notice USN-2051-1 December 09, 2013 gimp vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Updated gimp package fixes security vulnerabilities

An integer overflow flaw and a heap-based buffer overflow were found in the way GIMP loaded certain X Window System XWD image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrar...

CVE-2013-1978

Heap-based buffer overflow in the readxwdcols function in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an X Window System XWD image dump with more colors than color map...

CentOS Update for gimp CESA-2013:1778 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RedHat Update for gimp RHSA-2013:1778-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for gimp CESA-2013:1778 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RedHat Update for gimp RHSA-2013:1778-01

Check for the Version of gimp OpenVAS Vulnerability Test RedHat Update for gimp RHSA-2013:1778-01 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

CentOS 5 / 6 : gimp (CESA-2013:1778)

Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

RHEL 5 / 6 : gimp (RHSA-2013:1778)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:1778 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based...

Oracle Linux 5 / 6 : gimp (ELSA-2013-1778)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1778 advisory. - fix overflow in XWD loader CVE-2013-1913, CVE-2013-1978 Tenable has extracted the preceding description block directly from the Oracle Linux...