CVE-2009-1570

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.

Date published : 2009-11-13

http://www.securityfocus.com/bid/37006

http://www.securityfocus.com/archive/1/507813/100/0/threaded