UbuntuUSN-880-1GIMP vulnerabilities
7.1 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.072 Low
EPSS
Percentile
94.0%
Releases
- Ubuntu 9.10
- Ubuntu 9.04
- Ubuntu 8.10
- Ubuntu 8.04
Packages
- gimp -
Details
Stefan Cornelius discovered that GIMP did not correctly handle certain
malformed BMP files. If a user were tricked into opening a specially
crafted BMP file, an attacker could execute arbitrary code with the user’s
privileges. (CVE-2009-1570)
Stefan Cornelius discovered that GIMP did not correctly handle certain
malformed PSD files. If a user were tricked into opening a specially
crafted PSD file, an attacker could execute arbitrary code with the user’s
privileges. This issue only applied to Ubuntu 8.10, 9.04 and 9.10.
(CVE-2009-3909)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | gimp | < 2.6.7-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | gimp-dbg | < 2.6.7-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libgimp2.0 | < 2.6.7-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libgimp2.0-dev | < 2.6.7-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | gimp | < 2.6.6-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | gimp-dbg | < 2.6.6-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libgimp2.0 | < 2.6.6-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libgimp2.0-dev | < 2.6.6-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | gimp | < 2.6.1-1ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | gimp-dbg | < 2.6.1-1ubuntu3.1 | UNKNOWN |
Related
7.1 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.072 Low
EPSS
Percentile
94.0%