REDHAT-BUG-703407: Buffer Overflow
First published: Tue May 10 2011(Updated: )
Common Vulnerabilities and Exposures assigned an identifier <a href="https://access.redhat.com/security/cve/CVE-2010-4543">CVE-2010-4543</a> to the following vulnerability: Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image. NOTE: some of these details are obtained from third party information. References: [1] <a href="http://openwall.com/lists/oss-security/2011/01/03/2">http://openwall.com/lists/oss-security/2011/01/03/2</a> [2] <a href="http://openwall.com/lists/oss-security/2011/01/04/7">http://openwall.com/lists/oss-security/2011/01/04/7</a> [3] <a href="http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497">http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497</a> [4] <a class="bz_bug_link bz_status_CLOSED bz_closed bz_public " title="CLOSED ERRATA - CVE-2010-4540 Gimp: Stack-based buffer overflow in Lighting plug-in" href="show_bug.cgi?id=666793">https://bugzilla.redhat.com/show_bug.cgi?id=666793</a> [5] <a href="http://osvdb.org/70284">http://osvdb.org/70284</a> [6] <a href="http://secunia.com/advisories/42771">http://secunia.com/advisories/42771</a> [7] <a href="http://www.vupen.com/english/advisories/2011/0016">http://www.vupen.com/english/advisories/2011/0016</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GIMP |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2010-4543
- http://openwall.com/lists/oss-security/2011/01/03/2
- http://openwall.com/lists/oss-security/2011/01/04/7
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=608497
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=666793
- http://osvdb.org/70284
- http://secunia.com/advisories/42771
- http://www.vupen.com/english/advisories/2011/0016
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=706939
- https://rhn.redhat.com/errata/RHSA-2011-0839.html
- https://rhn.redhat.com/errata/RHSA-2011-0838.html
- https://rhn.redhat.com/errata/RHSA-2011-0837.html
- https://bugzilla.redhat.com/show_bug.cgi?id=703407
Frequently Asked Questions
What is the severity of REDHAT-BUG-703407?
The severity of REDHAT-BUG-703407 is critical due to the potential for remote code execution.
How do I fix REDHAT-BUG-703407?
To fix REDHAT-BUG-703407, update GIMP to the latest version that addresses this vulnerability.
What is the nature of the vulnerability in REDHAT-BUG-703407?
The vulnerability in REDHAT-BUG-703407 is a heap-based buffer overflow in the read_channel_data function.
Which software is affected by REDHAT-BUG-703407?
The affected software for REDHAT-BUG-703407 is the Paint Shop Pro (PSP) plugin in GIMP 2.6.11.
Is there a workaround for REDHAT-BUG-703407?
Currently, the recommended action for REDHAT-BUG-703407 is to apply the available patch rather than relying on a workaround.
- collector/redhat-bugzilla
- alias/CVE-2010-4543
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/weakness
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/gimp
- canonical/gimp