Launchpad CVE tracker

CVE 2007-3126

Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.

Related bugs and status

CVE-2007-3126 (Candidate) is related to these bugs:

Bug #1690544: include proper fix for CVE-2007-3126, released in GIMP 2.8.22

Summary				In	Importance	Status
	1690544	include proper fix for CVE-2007-3126, released in GIMP 2.8.22		gimp (Ubuntu)	Undecided	Fix Released
	1690544	include proper fix for CVE-2007-3126, released in GIMP 2.8.22		The Gimp	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

OSVDB: 43453
CONFIRM: https://bugzilla.gnome...
CONFIRM: https://git.gnome.org/...
CONFIRM: https://www.gimp.org/n...
XF: gimp-ico-file-dos(34789)
BUGTRAQ: 20070607 Re: CSIS Advi...

Launchpad.net

CVE 2007-3126

Related bugs and status

Related bugs

References