CVE-2009-3909

GIMP 2.6.7 - Integer Overflow and Heap-Based Buffer Overflow via Crafted PSD File

Title source: llm
STIX 2.1

Description

Integer overflow in the read_channel_data function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow.

References (16)

Core 16
Core References
Broken Link vdb-entry x_refsource_osvdb
http://osvdb.org/60178
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2009/dsa-1941
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201209-23.xml
Broken Link, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/3270
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1181.html
Broken Link x_refsource_misc
http://secunia.com/secunia_research/2009-43/
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.gnome.org/show_bug.cgi?id=600741
Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/507928/100/0/threaded
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/37040
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/50737
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1021
Broken Link third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37348
Broken Link vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2009:332

Scores

EPSS 0.0869
EPSS Percentile 94.5%

Details

CWE
CWE-190
Status published
Products (1)
gimp/gimp 2.6.7
Published Nov 19, 2009
Tracked Since Feb 18, 2026