CVE-2009-1570

GIMP 2.6.7 - Integer Overflow via Crafted BMP Width and Height Values

Title source: llm

Description

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.

References (17)

Core 17

Core References

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201209-23.xml

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/3564

Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/37006

Broken Link, Patch vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/3228

Broken Link vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2011-0837.html

Patch, Vendor Advisory x_refsource_confirm

http://git.gnome.org/cgit/gimp/commit/?h=gimp-2-6&id=df2b0aca2e7cdb95ebfd3454c65aaba0a83e9bbe

Broken Link vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2011-0838.html

Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/54254

Tool Signature vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8290

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/37232

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/50737

Broken Link x_refsource_misc

http://secunia.com/secunia_research/2009-42/

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2010/1021

Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/507813/100/0/threaded

Issue Tracking, Third Party Advisory x_refsource_misc

https://bugzilla.gnome.org/show_bug.cgi?id=600484

Broken Link vdb-entry x_refsource_osvdb

http://www.osvdb.org/59930

Scores

EPSS 0.0804

EPSS Percentile 94.1%

Details

CWE

CWE-190

Status published

Products (1)

gimp/gimp 2.6.7

Published Nov 13, 2009

Tracked Since Feb 18, 2026