BugTraq
Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability Mar 07 2005 08:30AM
Hongzhen Zhou (felix__zhou hotmail com)
In-Reply-To: <20050304163537.GA24606 (at) c9x (dot) org [email concealed]>

The bugzilla entry is http://bugzilla.gnome.org/show_bug.cgi?id=169113

The vendor has reponsed:
------- Additional Comment #2 From sven (at) gimp (dot) org [email concealed] 2005-03-03 12:51 -------
Added a sanity check in CVS HEAD. I don't consider this worth to be backported
to 2.2, closing as FIXED.

2005-03-03 Sven Neumann <sven (at) gimp (dot) org [email concealed]>

* plug-ins/common/gifload.c (ReadImage): added a sanity check for
bogus frame dimensions. Fixes bug #169113.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus