Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:14960
HistoryNov 23, 2009 - 12:00 a.m.

GIMP PSD图形解析整数溢出溢出漏洞

2009-11-2300:00:00
Root
www.seebug.org
13

0.067 Low

EPSS

Percentile

93.1%

JSON

BUGTRAQ ID: 37040
CVE(CAN) ID: CVE-2009-3909

GIMP是GNU Image Manipulation Program(GNU图像处理程序)的缩写,是一款跨平台的图像处理软件。

GIMP的plug-ins/file-psd/psd-load.c文件中的read_channel_data()函数存在最终可导致堆溢出的整数溢出漏洞,用户受骗打开恶意的PSD文件就可以触发这个溢出,导致执行任意代码。

GIMP 2.6.7
厂商补丁:

GIMP

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://git.gnome.org/cgit/gimp/commit/?id=0e440cb6d4d6ee029667363d244aff61b154c33c
http://git.gnome.org/cgit/gimp/commit/?id=9cc8d78ff33b7a36852b74e64b427489cad44d0e

Related

securityvulns 2
debiancve 2
prion 2
cve 2
ubuntucve 2
nessus 15
openvas 14
slackware 1
ubuntu 1
oraclelinux 1
redhat 1
centos 1
debian 1
gentoo 1
securityvulns
securityvulns
Secunia Research: Gimp PSD Image Parsing Integer Overflow Vulnerability
2009-11-17 00:00:00
GIMP integer overflow
2009-11-17 00:00:00
debiancve
debiancve
CVE-2009-3909
2009-11-19 00:30:00
CVE-2012-3402
2012-08-25 10:29:00
prion
prion
Integer overflow
2009-11-19 00:30:00
Integer overflow
2012-08-25 10:29:00
cve
cve
CVE-2009-3909
2009-11-19 00:30:00
CVE-2012-3402
2012-08-25 10:29:00
ubuntucve
ubuntucve
CVE-2009-3909
2009-11-18 00:00:00
CVE-2012-3402
2012-08-16 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : gimp vulnerabilities (USN-880-1)
2010-01-08 00:00:00
SuSE 10 Security Update : gimp (ZYPP Patch Number 6880)
2011-01-27 00:00:00
SuSE 11 Security Update : gimp (SAT Patch Number 2155)
2010-12-02 00:00:00
openvas
openvas
Ubuntu Update for gimp vulnerabilities USN-880-1
2010-01-15 00:00:00
Mandriva Update for gimp MDVSA-2009:332-1 (gimp)
2010-04-30 00:00:00
Mandriva Update for gimp MDVSA-2009:332-1 (gimp)
2010-04-30 00:00:00
slackware
slackware
[slackware-security] gimp
2009-12-12 06:36:49
ubuntu
ubuntu
GIMP vulnerabilities
2010-01-07 00:00:00
oraclelinux
oraclelinux
gimp security update
2012-08-20 00:00:00
redhat
redhat
(RHSA-2012:1181) Moderate: gimp security update
2012-08-20 00:00:00
centos
centos
gimp security update
2012-08-20 15:14:54
debian
debian
[SECURITY] [DSA 1941-1] New poppler packages fix several vulnerabilities
2009-11-25 22:37:47
gentoo
gentoo
GIMP: Multiple vulnerabilities
2012-09-28 00:00:00

0.067 Low

EPSS

Percentile

93.1%

JSON
Related for SSV:14960
securityvulns2debiancve2prion2cve2ubuntucve2nessus15openvas14slackware1ubuntu1oraclelinux1redhat1centos1debian1gentoo1