Vigil@nce - Gimp: buffer overflow of XWD Colormap Colors
December 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can create a malicious XWD image, to generate a buffer
overflow in Gimp, in order to trigger a denial of service, and
possibly to execute code.
– Impacted products: Debian, Fedora, GIMP, MBS, MES, RHEL
– Severity: 2/4
– Creation date: 05/12/2013
DESCRIPTION OF THE VULNERABILITY
The Gimp product supports images in the XWD format.
However, if the number of colors is greater than the Colormap
size, an overflow occurs in the plug-ins/common/file-xwd.c file.
An attacker can therefore create a malicious XWD image, to
generate a buffer overflow in Gimp, in order to trigger a denial
of service, and possibly to execute code.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Gimp-buffer-overflow-of-XWD-Colormap-Colors-13875