Candidate: CVE-2012-3402
CRD: 2012-08-16 12:00:00
PublicDate: 2012-08-25 10:29:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3402
Description:
 Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin
 in GIMP 2.2.13 and earlier allows remote attackers to cause a denial of
 service and possibly execute arbitrary code via a crafted channels header
 value in a PSD image file, which triggers a heap-based buffer overflow, a
 different vulnerability than CVE-2009-3909.
Ubuntu-Description: 
Notes: 
 tyhicks> 2.2.13 and older are affected
Bugs: 
Priority: low
Discovered-by: Jan Lieskovsky and Florian Weimer
Assigned-to: 
CVSS: 

Patches_gimp:
upstream_gimp: released (2.4.0~rc1-1)
hardy_gimp: ignored (reached end-of-life)
lucid_gimp: not-affected (2.6.8-2ubuntu1.4)
natty_gimp: not-affected
oneiric_gimp: not-affected
precise_gimp: not-affected
devel_gimp: not-affected (2.8.0-2ubuntu2)