NuytsTech Security

CVE-2012-3403

by ·

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."

Date published : 2012-08-25

http://www.securityfocus.com/bid/55101

http://www.mandriva.com/security/advisories?name=MDVSA-2012:142

Tags: