CVE-2013-1913

Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when used with glib before 2.24, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large color entries value in an X Window System (XWD) image dump.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=947868 Issue Tracking Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1778.html Third Party Advisory Vendor Advisory
http://www.securityfocus.com/bid/64105 Third Party Advisory VDB Entry
https://security.gentoo.org/glsa/201603-01 Third Party Advisory
http://www.ubuntu.com/usn/USN-2051-1 Third Party Advisory
http://www.debian.org/security/2013/dsa-2813 Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*

Information

Published : 2013-12-12 10:55

Updated : 2023-02-12 20:41


NVD link : CVE-2013-1913

Mitre link : CVE-2013-1913


JSON object : View

CWE
CWE-190

Integer Overflow or Wraparound

Advertisement

dedicated server usa

Products Affected

gimp

  • gimp

gnome

  • glib

redhat

  • enterprise_linux