In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character after the version string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gimp gimp 2.8.22 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
debian debian linux 7.0 |
||
canonical ubuntu linux 14.04 |