CVE-2009-1570

Priority
Medium
Description
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c
in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a
BMP file with crafted width and height values that trigger a heap-based
buffer overflow.
References
Bugs
Package
Source: gimp (LP Ubuntu Debian)
Upstream:needed
Patches:
Upstream:http://git.gnome.org/cgit/gimp/commit/?id=e3afc99b2fa7aeddf0dba4778663160a5bc682d3
Upstream:http://git.gnome.org/cgit/gimp/commit/?id=43d57c666346320436a0b668de5525387952784e
Upstream:http://git.gnome.org/cgit/gimp/commit/?id=f63ba36dd9cc01ca6da83fa05ddd12419ad8953e
Upstream:http://git.gnome.org/cgit/gimp/commit/?id=16e6a37687bb4b9748c5a5d166d90f5d5bd2e9f3
Vendor:https://bugzilla.redhat.com/attachment.cgi?id=374812
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:35:45 UTC (commit 9756)