Debian: DSA-2426-1 Moderate: GIMP Multiple Buffer Overflow Issues
debian
March 6, 2012
Several vulnerabilities have been identified in GIMP, the GNU Image Manipulation Program
Topics Covered
Summary
Several vulnerabilities have been identified in GIMP, the GNU Image
Manipulation Program.
CVE-2010-4540
Stack-based buffer overflow in the load_preset_response
function in plug-ins/lighting/lighting-ui.c in the "LIGHTING
EFFECTS > LIGHT" plugin allows user-assisted remote attackers to cause a denial of service (application crash) or possibly
execute arbitrary code via a long Position field in a plugin
configuration file.
CVE-2010-4541
Stack-based buffer overflow in the loadit function in
plug-ins/common/sphere-designer.c in the SPHERE DESIGNER
plugin allows user-assisted remote attackers to cause a denial
of service (application crash) or possibly execute arbitrary
code via a long "Number of lights" field in a plugin
configuration file.
CVE-2010-4542
Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb
function in in the GFIG plugin allows user-assisted remote
attackers to cause a denial of service (application crash) or
possibly execute arbitrary code via a long Foreground f...
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Package: gimp
CVE ID: CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!