Executive Summary
Summary | |
---|---|
Title | GIMP: Multiple vulnerabilities |
Informations | |||
---|---|---|---|
Name | GLSA-201209-23 | First vendor Publication | 2012-09-28 |
Vendor | Gentoo | Last vendor Modification | 2012-09-28 |
Severity (Vendor) | Normal | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Synopsis Multiple vulnerabilities have been found in GIMP, the worst of which allow execution of arbitrary code or Denial of Service. Background Description Impact Workaround Resolution References Availability http://security.gentoo.org/glsa/glsa-201209-23.xml |
Original Source
Url : http://security.gentoo.org/glsa/glsa-201209-23.xml |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
40 % | CWE-190 | Integer Overflow or Wraparound (CWE/SANS Top 25) |
10 % | CWE-120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') (CWE/SANS Top 25) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:13677 | |||
Oval ID: | oval:org.mitre.oval:def:13677 | ||
Title: | USN-880-1 -- gimp vulnerabilities | ||
Description: | Stefan Cornelius discovered that GIMP did not correctly handle certain malformed BMP files. If a user were tricked into opening a specially crafted BMP file, an attacker could execute arbitrary code with the user�s privileges. Stefan Cornelius discovered that GIMP did not correctly handle certain malformed PSD files. If a user were tricked into opening a specially crafted PSD file, an attacker could execute arbitrary code with the user�s privileges. This issue only applied to Ubuntu 8.10, 9.04 and 9.10 | ||
Family: | unix | Class: | patch |
Reference(s): | USN-880-1 CVE-2009-1570 CVE-2009-3909 | Version: | 5 |
Platform(s): | Ubuntu 8.04 Ubuntu 8.10 Ubuntu 9.10 Ubuntu 9.04 | Product(s): | gimp |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:13772 | |||
Oval ID: | oval:org.mitre.oval:def:13772 | ||
Title: | USN-1109-1 -- gimp vulnerabilities | ||
Description: | It was discovered that GIMP incorrectly handled malformed data in certain plugin configuration files. If a user were tricked into opening a specially crafted plugin configuration file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user�s privileges. The default compiler options for affected releases should reduce the vulnerability to a denial of service. It was discovered that GIMP incorrectly handled malformed PSP image files. If a user were tricked into opening a specially crafted PSP image file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user�s privileges | ||
Family: | unix | Class: | patch |
Reference(s): | USN-1109-1 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 | Version: | 5 |
Platform(s): | Ubuntu 8.04 Ubuntu 10.10 Ubuntu 9.10 Ubuntu 10.04 | Product(s): | gimp |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15350 | |||
Oval ID: | oval:org.mitre.oval:def:15350 | ||
Title: | DSA-2426-1 gimp -- several | ||
Description: | Several vulnerabilities have been identified in GIMP, the GNU Image Manipulation Program. CVE-2010-4540 Stack-based buffer overflow in the load_preset_response function in plug-ins/lighting/lighting-ui.c in the "LIGHTING EFFECTS > LIGHT" plugin allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a long Position field in a plugin configuration file. CVE-2010-4541 Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the SPHERE DESIGNER plugin allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a long "Number of lights" field in a plugin configuration file. CVE-2010-4542 Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb function in in the GFIG plugin allows user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a long Foreground field in a plugin configuration file. CVE-2010-4543 Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro plugin allows remote attackers to cause a denial of service or possibly execute arbitrary code via a PSP_COMP_RLE image file that begins a long run count at the end of the image. CVE-2011-1782 The correction for CVE-2010-4543 was incomplete. CVE-2011-2896 The LZW decompressor in the LZWReadByte function in plug-ins/common/file-gif-load.c does not properly handle code words that are absent from the decompression table when encountered, which allows remote attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-2426-1 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1782 CVE-2011-2896 | Version: | 5 |
Platform(s): | Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:21028 | |||
Oval ID: | oval:org.mitre.oval:def:21028 | ||
Title: | USN-1214-1 -- gimp vulnerability | ||
Description: | GIMP could be made to run programs as your login if it opened a specially crafted GIF file. | ||
Family: | unix | Class: | patch |
Reference(s): | USN-1214-1 CVE-2011-2896 | Version: | 5 |
Platform(s): | Ubuntu 11.04 Ubuntu 10.10 Ubuntu 10.04 | Product(s): | gimp |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21320 | |||
Oval ID: | oval:org.mitre.oval:def:21320 | ||
Title: | RHSA-2012:0302: cups security and bug fix update (Low) | ||
Description: | The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte function in img/gifread.c in XPCE in SWI-Prolog 5.10.4 and earlier, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows remote attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2895. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2012:0302-03 CVE-2011-2896 | Version: | 4 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | cups |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:21710 | |||
Oval ID: | oval:org.mitre.oval:def:21710 | ||
Title: | RHSA-2011:0838: gimp security update (Moderate) | ||
Description: | Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2011:0838-01 CESA-2011:0838 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178 | Version: | 81 |
Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | gimp |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21949 | |||
Oval ID: | oval:org.mitre.oval:def:21949 | ||
Title: | RHSA-2011:0839: gimp security update (Moderate) | ||
Description: | Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image. NOTE: some of these details are obtained from third party information. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2011:0839-01 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 | Version: | 55 |
Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23080 | |||
Oval ID: | oval:org.mitre.oval:def:23080 | ||
Title: | ELSA-2012:0302: cups security and bug fix update (Low) | ||
Description: | The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte function in img/gifread.c in XPCE in SWI-Prolog 5.10.4 and earlier, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows remote attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2895. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2012:0302-03 CVE-2011-2896 | Version: | 6 |
Platform(s): | Oracle Linux 5 | Product(s): | cups |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23268 | |||
Oval ID: | oval:org.mitre.oval:def:23268 | ||
Title: | ELSA-2011:0838: gimp security update (Moderate) | ||
Description: | Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011:0838-01 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178 | Version: | 29 |
Platform(s): | Oracle Linux 5 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23689 | |||
Oval ID: | oval:org.mitre.oval:def:23689 | ||
Title: | ELSA-2011:0839: gimp security update (Moderate) | ||
Description: | Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image. NOTE: some of these details are obtained from third party information. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011:0839-01 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 | Version: | 21 |
Platform(s): | Oracle Linux 6 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27046 | |||
Oval ID: | oval:org.mitre.oval:def:27046 | ||
Title: | RHSA-2011:1635 -- cups security and bug fix update (Low) | ||
Description: | The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. A heap-based buffer overflow flaw was found in the Lempel-Ziv-Welch (LZW) decompression algorithm implementation used by the CUPS GIF image format reader. An attacker could create a malicious GIF image file that, when printed, could possibly cause CUPS to crash or, potentially, execute arbitrary code with the privileges of the "lp" user. (CVE-2011-2896) These updated cups packages also provide fixes for the following bugs: * Previously CUPS was not correctly handling the language setting LANG=en_US.ASCII. As a consequence lpadmin, lpstat and lpinfo binaries were not displaying any output when the LANG=en_US.ASCII environment variable was used. As a result of this update the problem is fixed and the expected output is now displayed. (BZ#681836) * Previously the scheduler did not check for empty values of several configuration directives. As a consequence it was possible for the CUPS daemon (cupsd) to crash when a configuration file contained certain empty values. With this update the problem is fixed and cupsd no longer crashes when reading such a configuration file. (BZ#706673) * Previously when printing to a raw print queue, when using certain printer models, CUPS was incorrectly sending SNMP queries. As a consequence there was a noticeable 4-second delay between queueing the job and the start of printing. With this update the problem is fixed and CUPS no longer tries to collect SNMP supply and status information for raw print queues. (BZ#709896) * Previously when using the BrowsePoll directive it could happen that the CUPS printer polling daemon (cups-polld) began polling before the network interfaces were set up after a system boot. CUPS was then caching the failed hostname lookup. As a consequence no printers were found and the error, "Host name lookup failure", was logged. With this update the code that re-initializes the resolver after failure in cups-polld is fixed and as a result CUPS will obtain the correct network settings to use in printer discovery. (BZ#712430) * The MaxJobs directive controls the maximum number of print jobs that are kept in memory. Previously, once the number of jobs reached the limit, the CUPS system failed to automatically purge the data file associated with the oldest completed job from the system in order to make room for a new print job. This bug has been fixed, and the jobs beyond the set limit are now properly purged. (BZ#735505) * The cups init script (/etc/rc.d/init.d/cups) uses the daemon function (from /etc/rc.d/init.d/functions) to start the cups process, but previously it did not source a configuration file from the /etc/sysconfig/ directory. As a consequence, it was difficult to cleanly set the nice level or cgroup for the cups daemon by setting the NICELEVEL or CGROUP_DAEMON variables. With this update, the init script is fixed. (BZ#744791) All users of CUPS are advised to upgrade to these updated packages, which contain backported patches to resolve these issues. After installing this update, the cupsd daemon will be restarted automatically. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2011:1635 CVE-2011-2896 | Version: | 3 |
Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | cups |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:27488 | |||
Oval ID: | oval:org.mitre.oval:def:27488 | ||
Title: | DEPRECATED: ELSA-2011-0839 -- gimp security update (moderate) | ||
Description: | [2:2.6.9-4.1] - fix various overflows (#666793, #703403, #703405, #703407, #704512) | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011-0839 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 | Version: | 4 |
Platform(s): | Oracle Linux 6 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27680 | |||
Oval ID: | oval:org.mitre.oval:def:27680 | ||
Title: | DEPRECATED: ELSA-2012-0302 -- cups security and bug fix update (low) | ||
Description: | [1:1.3.7-30] - Backported patch to fix transcoding for ASCII (bug #759081, STR #3832). [1:1.3.7-29] - The imageto* filters could crash with bad GIF files (CVE-2011-2896, STR #3867, STR #3914, bug #752118). [1:1.3.7-28] - Web interface didn't show completed jobs for printer (STR #3436, bug #625900) - Serial backend didn't allow a raw job to be canceled (STR #3649, bug #625955) - Fixed condition in textonly filter to create temporary file regardless of the number of copies specified. (bug #660518) [1:1.3.7-27] - Call avc_init() only once to not leak file descriptors (bug #668009). | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2012-0302 CVE-2011-2896 | Version: | 4 |
Platform(s): | Oracle Linux 5 | Product(s): | cups |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27752 | |||
Oval ID: | oval:org.mitre.oval:def:27752 | ||
Title: | DEPRECATED: ELSA-2012-1181 -- gimp security update (moderate) | ||
Description: | [2:2.2.13-2.0.7.el5_8.5] - fix overflow in GIF loader (CVE-2012-3481) [2:2.2.13-2.0.7.el5_8.4] - fix overflows in PSD plugin (CVE-2009-3909, CVE-2012-3402) - fix heap corruption and overflow in GIF plug-in (CVE-2011-2896) - fix overflow in CEL plug-in (CVE-2012-3403) | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2012-1181 CVE-2009-3909 CVE-2012-3402 CVE-2012-3403 CVE-2012-3481 CVE-2011-2896 | Version: | 4 |
Platform(s): | Oracle Linux 5 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27838 | |||
Oval ID: | oval:org.mitre.oval:def:27838 | ||
Title: | DEPRECATED: ELSA-2012-1180 -- gimp security update (moderate) | ||
Description: | [2:2.6.9-4.3] - fix overflow in GIF loader (#847303) [2:2.6.9-4.2] - fix overflows in GIF, CEL loaders (#727800, #839020) | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2012-1180 CVE-2012-3403 CVE-2012-3481 CVE-2011-2896 | Version: | 4 |
Platform(s): | Oracle Linux 6 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:27965 | |||
Oval ID: | oval:org.mitre.oval:def:27965 | ||
Title: | DEPRECATED: ELSA-2011-0838 -- gimp security update (moderate) | ||
Description: | [2:2.2.13-2.0.7.2] - fix various overflows (#537356, #666793, #689831, #703403, #703405, #703407, - unfuzz gimphelpmissing, icontheme patches | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011-0838 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178 | Version: | 4 |
Platform(s): | Oracle Linux 5 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:28007 | |||
Oval ID: | oval:org.mitre.oval:def:28007 | ||
Title: | ELSA-2011-1635 -- cups security and bug fix update (low) | ||
Description: | [1.4.2-44] - Init script should source /etc/sysconfig/cups (bug #744791) [1.4.2-43] - The scheduler might leave old job data files in the spool directory (STR #3795, STR #3880, bug #735505). [1.4.2-42] - A further fix for imageto* filters crashing with bad GIF files (STR #3914, bug #714118). [1.4.2-41] - The imageto* filters could crash with bad GIF files (STR #3867, bug #714118). [1.4.2-40] - Map ASCII to ISO-8859-1 in the transcoding code (STR #3832, bug #681836). - Check for empty values for some configuration directives (STR #3861, bug #706673). - The network backends no longer try to collect SNMP supply and status information for raw queues (STR #3809, bug #709896). - Handle EAI_NONAME when resolving hostnames (bug #712430). | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011-1635 CVE-2011-2896 | Version: | 3 |
Platform(s): | Oracle Linux 6 | Product(s): | cups |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:8290 | |||
Oval ID: | oval:org.mitre.oval:def:8290 | ||
Title: | An Integer Overflow Vulnerability in GIMP(1) May Lead to Denial of Service (DoS) or Execution of Arbitrary Code | ||
Description: | Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2009-1570 | Version: | 1 |
Platform(s): | Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
SAINT Exploits
Description | Link |
---|---|
GIMP Script-Fu Server Buffer Overflow | More info here |
ExploitDB Exploits
id | Description |
---|---|
2012-05-31 | GIMP 2.6 script-fu < 2.8.0 Buffer Overflow Vulnerability |
OpenVAS Exploits
Date | Description |
---|---|
2012-12-13 | Name : SuSE Update for gimp openSUSE-SU-2012:1080-1 (gimp) File : nvt/gb_suse_2012_1080_1.nasl |
2012-10-03 | Name : Gentoo Security Advisory GLSA 201209-23 (gimp) File : nvt/glsa_201209_23.nasl |
2012-08-21 | Name : RedHat Update for gimp RHSA-2012:1180-01 File : nvt/gb_RHSA-2012_1180-01_gimp.nasl |
2012-08-21 | Name : RedHat Update for gimp RHSA-2012:1181-01 File : nvt/gb_RHSA-2012_1181-01_gimp.nasl |
2012-08-21 | Name : CentOS Update for gimp CESA-2012:1181 centos5 File : nvt/gb_CESA-2012_1181_gimp_centos5.nasl |
2012-08-21 | Name : CentOS Update for gimp CESA-2012:1180 centos6 File : nvt/gb_CESA-2012_1180_gimp_centos6.nasl |
2012-07-30 | Name : CentOS Update for gimp CESA-2011:0838 centos5 x86_64 File : nvt/gb_CESA-2011_0838_gimp_centos5_x86_64.nasl |
2012-07-30 | Name : CentOS Update for gimp CESA-2011:0837 centos4 x86_64 File : nvt/gb_CESA-2011_0837_gimp_centos4_x86_64.nasl |
2012-07-09 | Name : RedHat Update for cups RHSA-2011:1635-03 File : nvt/gb_RHSA-2011_1635-03_cups.nasl |
2012-06-27 | Name : GIMP Script-Fu Server Buffer Overflow Vulnerability File : nvt/gb_gimp_script_fu_bof_vuln.nasl |
2012-06-06 | Name : RedHat Update for gimp RHSA-2011:0839-01 File : nvt/gb_RHSA-2011_0839-01_gimp.nasl |
2012-04-02 | Name : Fedora Update for gimp FEDORA-2011-10761 File : nvt/gb_fedora_2011_10761_gimp_fc16.nasl |
2012-04-02 | Name : Fedora Update for cups FEDORA-2011-11173 File : nvt/gb_fedora_2011_11173_cups_fc16.nasl |
2012-04-02 | Name : Fedora Update for pl FEDORA-2011-11229 File : nvt/gb_fedora_2011_11229_pl_fc16.nasl |
2012-03-12 | Name : Debian Security Advisory DSA 2426-1 (gimp) File : nvt/deb_2426_1.nasl |
2012-02-21 | Name : RedHat Update for cups RHSA-2012:0302-03 File : nvt/gb_RHSA-2012_0302-03_cups.nasl |
2012-02-12 | Name : FreeBSD Ports: FreeBSD File : nvt/freebsd_FreeBSD14.nasl |
2012-02-11 | Name : Debian Security Advisory DSA 2354-1 (cups) File : nvt/deb_2354_1.nasl |
2011-11-08 | Name : Mandriva Update for gimp MDVSA-2011:167 (gimp) File : nvt/gb_mandriva_MDVSA_2011_167.nasl |
2011-10-21 | Name : Mandriva Update for libxfont MDVSA-2011:153 (libxfont) File : nvt/gb_mandriva_MDVSA_2011_153.nasl |
2011-10-14 | Name : Mandriva Update for cups MDVSA-2011:146 (cups) File : nvt/gb_mandriva_MDVSA_2011_146.nasl |
2011-09-23 | Name : Ubuntu Update for gimp USN-1214-1 File : nvt/gb_ubuntu_USN_1214_1.nasl |
2011-09-21 | Name : FreeBSD Ports: libXfont File : nvt/freebsd_libXfont.nasl |
2011-09-16 | Name : Ubuntu Update for cups USN-1207-1 File : nvt/gb_ubuntu_USN_1207_1.nasl |
2011-09-12 | Name : Fedora Update for cups FEDORA-2011-11221 File : nvt/gb_fedora_2011_11221_cups_fc14.nasl |
2011-09-12 | Name : Fedora Update for pl FEDORA-2011-11305 File : nvt/gb_fedora_2011_11305_pl_fc15.nasl |
2011-09-12 | Name : Fedora Update for pl FEDORA-2011-11318 File : nvt/gb_fedora_2011_11318_pl_fc14.nasl |
2011-08-31 | Name : Fedora Update for cups FEDORA-2011-11197 File : nvt/gb_fedora_2011_11197_cups_fc15.nasl |
2011-08-27 | Name : Fedora Update for gimp FEDORA-2011-10782 File : nvt/gb_fedora_2011_10782_gimp_fc14.nasl |
2011-08-24 | Name : Fedora Update for gimp FEDORA-2011-10788 File : nvt/gb_fedora_2011_10788_gimp_fc15.nasl |
2011-08-09 | Name : CentOS Update for gimp CESA-2011:0838 centos5 i386 File : nvt/gb_CESA-2011_0838_gimp_centos5_i386.nasl |
2011-06-24 | Name : Mandriva Update for gimp MDVSA-2011:110 (gimp) File : nvt/gb_mandriva_MDVSA_2011_110.nasl |
2011-06-10 | Name : Fedora Update for gimp FEDORA-2011-7397 File : nvt/gb_fedora_2011_7397_gimp_fc13.nasl |
2011-06-10 | Name : Fedora Update for gimp FEDORA-2011-7393 File : nvt/gb_fedora_2011_7393_gimp_fc14.nasl |
2011-06-06 | Name : CentOS Update for gimp CESA-2011:0837 centos4 i386 File : nvt/gb_CESA-2011_0837_gimp_centos4_i386.nasl |
2011-06-06 | Name : RedHat Update for gimp RHSA-2011:0838-01 File : nvt/gb_RHSA-2011_0838-01_gimp.nasl |
2011-06-06 | Name : RedHat Update for gimp RHSA-2011:0837-01 File : nvt/gb_RHSA-2011_0837-01_gimp.nasl |
2011-06-03 | Name : Mandriva Update for gimp MDVSA-2011:103 (gimp) File : nvt/gb_mandriva_MDVSA_2011_103.nasl |
2011-04-19 | Name : Ubuntu Update for gimp vulnerabilities USN-1109-1 File : nvt/gb_ubuntu_USN_1109_1.nasl |
2010-04-30 | Name : Mandriva Update for gimp MDVSA-2009:332-1 (gimp) File : nvt/gb_mandriva_MDVSA_2009_332_1.nasl |
2010-02-03 | Name : Solaris Update for GNOME 2.6.0 143510-01 File : nvt/gb_solaris_143510_01.nasl |
2010-02-03 | Name : Solaris Update for GIMP 143511-01 File : nvt/gb_solaris_143511_01.nasl |
2010-01-15 | Name : Ubuntu Update for gimp vulnerabilities USN-880-1 File : nvt/gb_ubuntu_USN_880_1.nasl |
2009-12-14 | Name : Mandriva Security Advisory MDVSA-2009:296-1 (gimp) File : nvt/mdksa_2009_296_1.nasl |
2009-12-03 | Name : Debian Security Advisory DSA 1941-1 (poppler) File : nvt/deb_1941_1.nasl |
0000-00-00 | Name : Slackware Advisory SSA:2009-345-01 gimp File : nvt/esoft_slk_ssa_2009_345_01.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
74539 | GIMP plug-ins/common/file-gif-load.c LZWReadByte() Function GIF File Handling... |
72753 | GIMP Personal Computer Exchange Plugin file-pcx.c load_image Function Crafted... |
70284 | GIMP plug-ins/common/file-psp.c read_channel_data() Function Overflow GIMP is prone to an overflow condition. The 'read_channel_data()' function in 'plug-ins/common/file-psp.c' fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted PSP file, a context-dependent attacker can potentially execute arbitrary code. |
70283 | GIMP plug-ins/gfig/gfig-style.c gfig_read_parameter_gimp_rgb() Function Overflow GIMP is prone to an overflow condition. The 'gfig_read_parameter_gimp_rgb()' function in 'plug-ins/gfig/gfig-style.c' fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted GFIG or XCF file, a context-dependent attacker can potentially execute arbitrary code. |
70282 | GIMP plug-ins/lighting/lighting-ui.c load_preset_response() Function Overflow GIMP is prone to an overflow condition. The 'load_preset_response()' function in 'plug-ins/lighting/lighting-ui.c' in the 'Lighting Effects' plugin fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted file for the plugin, a context-dependent attacker can potentially execute arbitrary code. |
70281 | GIMP plug-ins/common/sphere-designer.c loadit() Function Overflow GIMP is prone to an overflow condition. The 'loadit()' function in 'plug-ins/common/sphere-designer.c' of the 'Sphere Designer' plugin fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted file for the plugin, a context-dependent attacker can potentially execute arbitrary code. |
60178 | GIMP plug-ins/file-psd/psd-load.c read_channel_data() Function PSD Image Hand... |
59930 | GIMP plug-ins/file-bmp/bmp-read.c ReadImage() Function Overflow |
Snort® IPS/IDS
Date | Description |
---|---|
2014-04-17 | GIMP heap buffer overflow vulnerability attempt RuleID : 30213 - Revision : 2 - Type : FILE-IMAGE |
2014-04-17 | GIMP heap buffer overflow vulnerability attempt RuleID : 30212 - Revision : 2 - Type : FILE-IMAGE |
2014-01-10 | Gimp Script-Fu server buffer overflow attempt RuleID : 24739 - Revision : 5 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2015-01-19 | Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_gimp_20120918.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_gimp-110916.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_gimp-110531.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_gimp-110916.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_gimp-110531.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_gimp-110217.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-583.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-543.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0838.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0837.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0839.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0302.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1180.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1181.nasl - Type : ACT_GATHER_INFO |
2013-06-29 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0838.nasl - Type : ACT_GATHER_INFO |
2013-01-25 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-120713.nasl - Type : ACT_GATHER_INFO |
2012-09-29 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201209-23.nasl - Type : ACT_GATHER_INFO |
2012-09-06 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-147.nasl - Type : ACT_GATHER_INFO |
2012-08-23 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-8251.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120820_gimp_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1180.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1181.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1180.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1181.nasl - Type : ACT_GATHER_INFO |
2012-08-21 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120820_gimp_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_gimp_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_gimp_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_gimp_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111206_cups_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120221_cups_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-03-07 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2426.nasl - Type : ACT_GATHER_INFO |
2012-02-21 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0302.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-110923.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-7775.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cups-110921.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-7543.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-7776.nasl - Type : ACT_GATHER_INFO |
2011-12-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1635.nasl - Type : ACT_GATHER_INFO |
2011-12-01 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2354.nasl - Type : ACT_GATHER_INFO |
2011-11-07 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-167.nasl - Type : ACT_GATHER_INFO |
2011-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-7774.nasl - Type : ACT_GATHER_INFO |
2011-10-18 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-153.nasl - Type : ACT_GATHER_INFO |
2011-10-11 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-146.nasl - Type : ACT_GATHER_INFO |
2011-09-23 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1214-1.nasl - Type : ACT_GATHER_INFO |
2011-09-15 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1207-1.nasl - Type : ACT_GATHER_INFO |
2011-09-12 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11229.nasl - Type : ACT_GATHER_INFO |
2011-09-12 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11221.nasl - Type : ACT_GATHER_INFO |
2011-09-09 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11318.nasl - Type : ACT_GATHER_INFO |
2011-09-09 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11305.nasl - Type : ACT_GATHER_INFO |
2011-08-31 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11173.nasl - Type : ACT_GATHER_INFO |
2011-08-29 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11197.nasl - Type : ACT_GATHER_INFO |
2011-08-29 | Name : The remote print service is affected by a buffer overflow vulnerability. File : cups_1_4_7.nasl - Type : ACT_GATHER_INFO |
2011-08-23 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10782.nasl - Type : ACT_GATHER_INFO |
2011-08-23 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10761.nasl - Type : ACT_GATHER_INFO |
2011-08-20 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10788.nasl - Type : ACT_GATHER_INFO |
2011-06-20 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-110.nasl - Type : ACT_GATHER_INFO |
2011-06-09 | Name : The remote Fedora host is missing a security update. File : fedora_2011-7397.nasl - Type : ACT_GATHER_INFO |
2011-06-07 | Name : The remote Fedora host is missing a security update. File : fedora_2011-7393.nasl - Type : ACT_GATHER_INFO |
2011-06-07 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-110531.nasl - Type : ACT_GATHER_INFO |
2011-06-02 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0837.nasl - Type : ACT_GATHER_INFO |
2011-06-01 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0837.nasl - Type : ACT_GATHER_INFO |
2011-06-01 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0838.nasl - Type : ACT_GATHER_INFO |
2011-06-01 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0839.nasl - Type : ACT_GATHER_INFO |
2011-05-31 | Name : The remote Fedora host is missing a security update. File : fedora_2011-7371.nasl - Type : ACT_GATHER_INFO |
2011-05-31 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-103.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_gimp-110217.nasl - Type : ACT_GATHER_INFO |
2011-04-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1109-1.nasl - Type : ACT_GATHER_INFO |
2011-03-25 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-7374.nasl - Type : ACT_GATHER_INFO |
2011-03-11 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-110307.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-6882.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-6880.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-100318.nasl - Type : ACT_GATHER_INFO |
2010-04-29 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-332.nasl - Type : ACT_GATHER_INFO |
2010-04-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_gimp-100318.nasl - Type : ACT_GATHER_INFO |
2010-04-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_gimp-100318.nasl - Type : ACT_GATHER_INFO |
2010-04-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_gimp-100318.nasl - Type : ACT_GATHER_INFO |
2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1941.nasl - Type : ACT_GATHER_INFO |
2010-01-08 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-880-1.nasl - Type : ACT_GATHER_INFO |
2009-12-14 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-296.nasl - Type : ACT_GATHER_INFO |
2009-12-14 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2009-345-01.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:37:36 |
|