Vulnerabilities > Gimp
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-07-04 | CVE-2007-2949 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value. | 6.8 |
| 2007-06-08 | CVE-2007-3126 | Unspecified vulnerability in Gimp Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237. | 5.0 |
| 2007-04-30 | CVE-2007-2356 | Out-of-bounds Write vulnerability in Gimp 2.2.14 Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file. | 6.8 |
| 2006-07-06 | CVE-2006-3404 | Classic Buffer Overflow vulnerability in Gimp Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp before 2.2.12 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property. | 5.1 |
| 2005-05-02 | CVE-2005-0654 | Unspecified vulnerability in Gimp 2.0.5/2.2.3/2.2.4 gifload.exe in GIMP 2.0.5, 2.2.3, and possibly 2.2.4 allows remote attackers or local users to cause a denial of service (application crash) via the image descriptor (1) height or (2) width fields set to zero. | 5.0 |