gimp vulnerability

ID USN-312-1
Type ubuntu
Reporter Ubuntu
Modified 2006-07-10T00:00:00


Henning Makholm discovered that gimp did not sufficiently validate the ‘num_axes’ parameter in XCF files. By tricking a user into opening a specially crafted XCF file with Gimp, an attacker could exploit this to execute arbitrary code with the user’s privileges.