Bug 200596

Summary: CVE-2006-3404 Gimp XCF_load_vector Function Buffer Overflow
Product: [Retired] Fedora Legacy Reporter: John Dalbec <jpdalbec>
Component: gimpAssignee: Fedora Legacy Bugs <bugs>
Status: CLOSED CANTFIX QA Contact: David Lawrence <dkl>
Severity: medium Docs Contact:
Priority: medium    
Version: fc3CC: mattdm
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://bugzilla.gnome.org/show_bug.cgi?id=346742
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-04-10 19:14:04 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description John Dalbec 2006-07-28 20:53:47 UTC 
06.27.42 CVE: CVE-2006-3404
Platform: Cross Platform
Title: Gimp XCF_load_vector Function Buffer Overflow
Description: Gimp is a free image manipulation application. The
"xcf_load_vector()" function is vulnerable to a buffer overflow when
the application processes a malicious image file. GIMP versions 2.2.11
and earlier are vulnerable.
Ref: http://bugzilla.gnome.org/show_bug.cgi?id=346742
Comment 1 Matthew Miller 2007-04-10 19:14:04 UTC 
Fedora Core 3 is now completely unmaintained. These bugs can't be fixed in that
version. If the issue still persists in current Fedora Core, please reopen.
Thank you, and sorry about this.