CVE-2012-3403

描述

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."

受影響套件(1)

• Debian/gimpfrom 0, < 2.8.2-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3403