6.8 - MDVSA-2011:110

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	MDVSA-2011:110	First vendor Publication	2011-06-17
Vendor	Mandriva	Last vendor Modification	2011-06-17
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	6.8	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability was discovered and corrected in gimp:

Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow (CVE-2011-1178).

Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct this issue.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2011:110

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-190	Integer Overflow or Wraparound (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:21710

Oval ID:	oval:org.mitre.oval:def:21710
Title:	RHSA-2011:0838: gimp security update (Moderate)
Description:	Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0838-01 CESA-2011:0838 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178	Version:	81
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	gimp
Definition Synopsis:
Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages section gimp-libs is earlier than 2:2.2.13-2.0.7.el5_6.2 AND gimp-devel is earlier than 2:2.2.13-2.0.7.el5_6.2 AND gimp is earlier than 2:2.2.13-2.0.7.el5_6.2

Definition Id: oval:org.mitre.oval:def:23268

Oval ID:	oval:org.mitre.oval:def:23268
Title:	ELSA-2011:0838: gimp security update (Moderate)
Description:	Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0838-01 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178	Version:	29
Platform(s):	Oracle Linux 5	Product(s):	gimp
Definition Synopsis:
Oracle Linux 5.x rpm test gimp-libs is earlier than 2:2.2.13-2.0.7.el5_6.2 AND gimp-devel is earlier than 2:2.2.13-2.0.7.el5_6.2 AND gimp is earlier than 2:2.2.13-2.0.7.el5_6.2

Definition Id: oval:org.mitre.oval:def:27965

Oval ID:	oval:org.mitre.oval:def:27965
Title:	DEPRECATED: ELSA-2011-0838 -- gimp security update (moderate)
Description:	[2:2.2.13-2.0.7.2] - fix various overflows (#537356, #666793, #689831, #703403, #703405, #703407, - unfuzz gimphelpmissing, icontheme patches
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-0838 CVE-2009-1570 CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1178	Version:	4
Platform(s):	Oracle Linux 5	Product(s):	gimp
Definition Synopsis:
Oracle Linux 5.x Packages match section gimp is earlier than 0:2.2.13-2.0.7.el5_6.2 AND gimp-devel is earlier than 0:2.2.13-2.0.7.el5_6.2 AND gimp-libs is earlier than 0:2.2.13-2.0.7.el5_6.2

CPE : Common Platform Enumeration

Type	Description	Count
Application	Gimp cpe:2.3:a:gimp:gimp:2.6.9:::::::* cpe:2.3:a:gimp:gimp:2.6.8:::::::* cpe:2.3:a:gimp:gimp:2.6.7:::::::* cpe:2.3:a:gimp:gimp:2.6.6:::::::* cpe:2.3:a:gimp:gimp:2.6.5:::::::* cpe:2.3:a:gimp:gimp:2.6.4:::::::* cpe:2.3:a:gimp:gimp:2.6.3:::::::* cpe:2.3:a:gimp:gimp:2.6.2:::::::* cpe:2.3:a:gimp:gimp:2.6.13:::::::* cpe:2.3:a:gimp:gimp:2.6.12:::::::* cpe:2.3:a:gimp:gimp:2.6.11:::::::* cpe:2.3:a:gimp:gimp:2.6.10:::::::* cpe:2.3:a:gimp:gimp:2.6.1:::::::* cpe:2.3:a:gimp:gimp:2.6.0:::::::* cpe:2.3:a:gimp:gimp:2.4.7:::::::* cpe:2.3:a:gimp:gimp:2.4.6:::::::* cpe:2.3:a:gimp:gimp:2.4.5:::::::* cpe:2.3:a:gimp:gimp:2.4.4:::::::* cpe:2.3:a:gimp:gimp:2.4.3:::::::* cpe:2.3:a:gimp:gimp:2.4.2:::::::* cpe:2.3:a:gimp:gimp:2.4.1:::::::* cpe:2.3:a:gimp:gimp:2.4.0:::::::* cpe:2.3:a:gimp:gimp:2.2.4:::::::* cpe:2.3:a:gimp:gimp:2.2.3:::::::* cpe:2.3:a:gimp:gimp:2.2.14:::::::* cpe:2.3:a:gimp:gimp:2.2.13:::::::* cpe:2.3:a:gimp:gimp:2.2:::::::* cpe:2.3:a:gimp:gimp:2.0.5:::::::* cpe:2.3:a:gimp:gimp:2.0:::::::* cpe:2.3:a:gimp:gimp::::::::	30

OpenVAS Exploits

Date	Description
2012-10-03	Name : Gentoo Security Advisory GLSA 201209-23 (gimp) File : nvt/glsa_201209_23.nasl
2012-07-30	Name : CentOS Update for gimp CESA-2011:0837 centos4 x86_64 File : nvt/gb_CESA-2011_0837_gimp_centos4_x86_64.nasl
2012-07-30	Name : CentOS Update for gimp CESA-2011:0838 centos5 x86_64 File : nvt/gb_CESA-2011_0838_gimp_centos5_x86_64.nasl
2011-08-09	Name : CentOS Update for gimp CESA-2011:0838 centos5 i386 File : nvt/gb_CESA-2011_0838_gimp_centos5_i386.nasl
2011-06-24	Name : Mandriva Update for gimp MDVSA-2011:110 (gimp) File : nvt/gb_mandriva_MDVSA_2011_110.nasl
2011-06-06	Name : CentOS Update for gimp CESA-2011:0837 centos4 i386 File : nvt/gb_CESA-2011_0837_gimp_centos4_i386.nasl
2011-06-06	Name : RedHat Update for gimp RHSA-2011:0837-01 File : nvt/gb_RHSA-2011_0837-01_gimp.nasl
2011-06-06	Name : RedHat Update for gimp RHSA-2011:0838-01 File : nvt/gb_RHSA-2011_0838-01_gimp.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
72753	GIMP Personal Computer Exchange Plugin file-pcx.c load_image Function Crafted...

Nessus® Vulnerability Scanner

Date	Description
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_gimp-110531.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_gimp-110531.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0837.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0838.nasl - Type : ACT_GATHER_INFO
2013-06-29	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0838.nasl - Type : ACT_GATHER_INFO
2012-09-29	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201209-23.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_gimp_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_gimp_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2011-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-7543.nasl - Type : ACT_GATHER_INFO
2011-06-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-110.nasl - Type : ACT_GATHER_INFO
2011-06-07	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_gimp-110531.nasl - Type : ACT_GATHER_INFO
2011-06-02	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0837.nasl - Type : ACT_GATHER_INFO
2011-06-01	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0837.nasl - Type : ACT_GATHER_INFO
2011-06-01	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0838.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:42:20	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	3
CPE ID(s)	30
osvdb(s)	1
Openvas Exploit(s)	8
Nessus® Exploit(s)	14

	Related
6.8	CVE-2011-1178
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)