CVE-2007-2949
published 2007-07-04CVE-2007-2949: Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | gimp | < gimp 2.2.16-1 (bookworm) | gimp 2.2.16-1 (bookworm) |
| gimp | gimp | <= 2.2.15 | — |
| gimp | gimp | >= 0 < 2.2.16-1 | 2.2.16-1 |
| gimp | gimp | >= 0 < 2.2.16-1 | 2.2.16-1 |
| gimp | gimp | >= 0 < 2.2.16-1 | 2.2.16-1 |
| gimp | gimp | >= 0 < 2.2.16-1 | 2.2.16-1 |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM