paul Posted July 19, 2006 Report Share Posted July 19, 2006 A buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp 2.2.x allows user-complicit attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property. Updated packages have been patched to correct this issue. Link to comment Share on other sites More sharing options...
Recommended Posts