Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-1978

Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an X Window System (XWD) image dump with more colors than color map entries.

Related bugs and status

CVE-2013-1978 (Candidate) is related to these bugs:

Bug #1366560: Merge gimp 2.8.14-1 (main) from Debian unstable (main)

Summary				In	Importance	Status
	1366560	Merge gimp 2.8.14-1 (main) from Debian unstable (main)		gimp (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://www.debian.org/...
MISC: https://security.gento...
MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://www.ubuntu.com/...