CVE-2009-3909

EPSS 6.7%

Published: 11/19/2009Modified: 4/28/2026

Description

Integer overflow in the read_channel_data function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow.

Affected packages (1)

Debian/gimpfrom 0, < 2.6.7-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-3909