Launchpad.net

CVE 2006-4519

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.

Related bugs and status

CVE-2006-4519 (Candidate) is related to these bugs:

Bug #125237: [GIMP] Multiple Integer Overflow Vulnerabilities (CVE-2006-4519)

Summary				In	Importance	Status
	125237	[GIMP] Multiple Integer Overflow Vulnerabilities (CVE-2006-4519)		gimp (Ubuntu)	Medium	Fix Released
	125237	[GIMP] Multiple Integer Overflow Vulnerabilities (CVE-2006-4519)		The Gimp	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20070709 Multiple Vend...
CONFIRM: http://bugzilla.gnome....
CONFIRM: http://developer.gimp....
BID: 24835
SECTRACK: 1018349
DEBIAN: DSA-1335
SECUNIA: 26132
GENTOO: GLSA-200707-09
SECUNIA: 26215
CONFIRM: http://issues.foresigh...
UBUNTU: USN-494-1
SECUNIA: 26240
SECUNIA: 26575
REDHAT: RHSA-2007:0513
SECUNIA: 26939
MANDRIVA: MDKSA-2007:170
VUPEN: ADV-2007-2471
OSVDB: 42139
OSVDB: 42140
OSVDB: 42141
OSVDB: 42142
OSVDB: 42143
OSVDB: 42144
OSVDB: 42145
XF: gimp-plugins-code-exec...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070801 FLEA-2007-003...