CVE-2007-3741

The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp allow user-assisted remote attackers to cause a denial of service (crash or memory consumption) via crafted image files, as discovered using the fusil fuzzing tool.

🔗 References (20)

• secalert@redhathttp://osvdb.org/42128
• secalert@redhathttp://osvdb.org/42129
• secalert@redhathttp://osvdb.org/42130
• secalert@redhathttp://osvdb.org/42131
• secalert@redhathttp://secunia.com/advisories/26575
• secalert@redhathttp://secunia.com/advisories/26939
• secalert@redhathttp://www.mandriva.com/security/advisories?name=MDKSA-2007:170
• secalert@redhathttp://www.redhat.com/support/errata/RHSA-2007-0513.html
• secalert@redhathttp://www.securityfocus.com/bid/25424
• secalert@redhathttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10099
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42128
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42129
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42130
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42131
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26575