CVE-2006-4519

N/A Unknown

Published: July 10, 2007 Modified: April 23, 2026

Description

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugzilla.gnome.org/show_bug.cgi?id=451379

Source: cve@mitre.org

Issue Tracking Third Party Advisory

http://developer.gimp.org/NEWS-2.2

Source: cve@mitre.org

Broken Link

http://issues.foresightlinux.org/browse/FL-457

Source: cve@mitre.org

Broken Link

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=551

Source: cve@mitre.org

Broken Link

http://osvdb.org/42139

Source: cve@mitre.org

Broken Link

http://osvdb.org/42140

Source: cve@mitre.org

Broken Link

http://osvdb.org/42141

Source: cve@mitre.org

Broken Link

http://osvdb.org/42142

Source: cve@mitre.org

Broken Link

http://osvdb.org/42143

Source: cve@mitre.org

Broken Link

http://osvdb.org/42144

Source: cve@mitre.org

Broken Link

http://osvdb.org/42145

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/26132

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/26215

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/26240

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/26575

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/26939

Source: cve@mitre.org

Broken Link

http://security.gentoo.org/glsa/glsa-200707-09.xml

Source: cve@mitre.org

Third Party Advisory

http://www.debian.org/security/2007/dsa-1335

Source: cve@mitre.org

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2007:170

Source: cve@mitre.org

Broken Link

http://www.redhat.com/support/errata/RHSA-2007-0513.html

Source: cve@mitre.org

Third Party Advisory

http://www.securityfocus.com/archive/1/475257/100/0/threaded

Source: cve@mitre.org

Broken Link Third Party Advisory VDB Entry

http://www.securityfocus.com/bid/24835

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.securitytracker.com/id?1018349

Source: cve@mitre.org

Third Party Advisory VDB Entry

http://www.ubuntu.com/usn/usn-494-1

Source: cve@mitre.org

Third Party Advisory

http://www.vupen.com/english/advisories/2007/2471

Source: cve@mitre.org

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/35308

Source: cve@mitre.org

Third Party Advisory VDB Entry

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10842

Source: cve@mitre.org

Tool Signature

http://bugzilla.gnome.org/show_bug.cgi?id=451379