Vulnerability Description
Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gimp | Gimp | <= 2.2.15 |
| Canonical | Ubuntu Linux | 6.06 |
Related Weaknesses (CWE)
References
- http://issues.foresightlinux.org/browse/FL-457Broken Link
- http://osvdb.org/37804Broken Link
- http://secunia.com/advisories/25677Broken LinkPatch
- http://secunia.com/advisories/25949Broken Link
- http://secunia.com/advisories/26044Broken Link
- http://secunia.com/advisories/26132Broken Link
- http://secunia.com/advisories/26215Broken Link
- http://secunia.com/advisories/26384Broken Link
- http://secunia.com/advisories/26575Broken Link
- http://secunia.com/advisories/26939Broken Link
- http://secunia.com/advisories/28114Broken Link
- http://secunia.com/secunia_research/2007-63/advisory/Broken LinkPatchVendor Advisory
- http://security.gentoo.org/glsa/glsa-200707-09.xmlThird Party Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1Broken Link
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1Broken Link
FAQ
What is CVE-2007-2949?
CVE-2007-2949 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) widt...
How severe is CVE-2007-2949?
CVE-2007-2949 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2949?
Check the references section above for vendor advisories and patch information. Affected products include: Gimp Gimp, Canonical Ubuntu Linux.