CVE-2009-1570

EPSS 3.1%

Published: 11/13/2009Modified: 4/28/2026

Also known as:DEBIAN-CVE-2009-1570

Description

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.

Affected packages (1)

Debian/gimpfrom 0, < 2.6.7-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-1570