Vulnerability Description
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4543.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gimp | Gimp | 2.6.11 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/48236Broken Link
- http://www.debian.org/security/2012/dsa-2426Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:103Broken Link
- https://bugzilla.redhat.com/show_bug.cgi?id=704512Issue TrackingPatchThird Party Advisory
- http://secunia.com/advisories/48236Broken Link
- http://www.debian.org/security/2012/dsa-2426Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:103Broken Link
- https://bugzilla.redhat.com/show_bug.cgi?id=704512Issue TrackingPatchThird Party Advisory
FAQ
What is CVE-2011-1782?
CVE-2011-1782 is a vulnerability with a CVSS score of 7.5 (HIGH). Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or...
How severe is CVE-2011-1782?
CVE-2011-1782 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1782?
Check the references section above for vendor advisories and patch information. Affected products include: Gimp Gimp.