Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote malicious users to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gimp gimp 2.6.7 |