CVE-2007-3741
GIMP - Denial of Service via Crafted Image Files in psp, bmp, pcx, and psd Plugins
Title source: llmDescription
The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp allow user-assisted remote attackers to cause a denial of service (crash or memory consumption) via crafted image files, as discovered using the fusil fuzzing tool.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/42131
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26575
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/42128
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2007-0513.html
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10099
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26939
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/42129
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/42130
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/25424
Scores
EPSS
0.0181
EPSS Percentile
83.1%
Details
Status
published
Products (1)
gnu/gimp
Published
Aug 27, 2007
Tracked Since
Feb 18, 2026