CVE-2006-3404

EPSS 1.9%

gimp - buffer overflow

發布日:2006/7/6修改日:2026/4/28

描述

Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp before 2.2.12 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property.

受影響套件(2)

Debian/gimpfrom 0, < 2.2.11-3.1
Debian/gimpfrom 0, < 2.2.6-1sarge1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-3404