198270 – CVE-2006-3404 gimp xcf buffer overflow

Bug 198270 - CVE-2006-3404 gimp xcf buffer overflow

Summary: CVE-2006-3404 gimp xcf buffer overflow

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	gimp
Sub Component:
Version:	5
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Nils Philippsen
QA Contact:	David Lawrence
Docs Contact:
URL:
Whiteboard:	source=debian,reported=20060706,publi...
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-07-10 19:23 UTC by Josh Bressers
Modified:	2007-11-30 22:11 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2006-07-11 12:28:15 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
gimp-2.2.12-gcc4.patch (42.55 KB, patch) 2006-07-10 23:50 UTC, jens.koerber	no flags	Details \| Diff
View All

Description Josh Bressers 2006-07-10 19:23:10 UTC

+++ This bug was initially created as a clone of Bug #198269 +++

gimp xcf buffer overflow

Henning Makholm discovered a buffer overflow bug in gimp's XCF loader.
It is possible to overflow a static buffer with arbitrary data, which
could likely result in arbitrary code execution.

The upstream bug contains the patch:
http://bugzilla.gnome.org/show_bug.cgi?id=346742

Comment 1 Josh Bressers 2006-07-10 19:27:22 UTC

This issue should also affect FC4

Comment 2 jens.koerber 2006-07-10 23:50:57 UTC

Created attachment 132207 [details]
gimp-2.2.12-gcc4.patch

updated gcc4 patch ...

Comment 3 Nils Philippsen 2006-07-11 12:28:15 UTC

gimp-2.2.12 has already been built for FC4, FC5 and Rawhide and waits for
pushing. Jens, thanks for the updated patch but with 2.2.12 it is no longer
necessary as upstream just uses -mmmx, -msse and so on to build these asm source
files.

Note You need to log in before you can comment on or make changes to this bug.