Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gimp gimp |