Lucene search
HistoryDec 12, 2013 - 6:55 p.m.
CVE-2013-1978
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.764
Percentile
98.2%
Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an X Window System (XWD) image dump with more colors than color map entries.
Affected configurations
Node
gimpgimpRange≤2.6.9
gnomeglibRange≤2.24.0
Node
redhatenterprise_linuxMatch5.0
ORredhatenterprise_linuxMatch6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| gimp | gimp | * | cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:* |
| gnome | glib | * | cpe:2.3:a:gnome:glib:*:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 5.0 | cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:* |
| redhat | enterprise_linux | 6.0 | cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
GIMP XWD File Handling Heap Buffer Overflow (CVE-2013-1978)
2013-12-22 00:00:00
cvelist
cvelist
CVE-2013-1978
2013-12-12 18:00:00
prion
prion
Heap overflow
2013-12-12 18:55:00
cve
cve
CVE-2013-1978
2013-12-12 18:55:10
ubuntucve
ubuntucve
CVE-2013-1978
2013-12-04 00:00:00
debiancve
debiancve
CVE-2013-1978
2013-12-12 18:55:10
openvas
openvas
Ubuntu: Security Advisory (USN-2051-1)
2013-12-17 00:00:00
Fedora Update for gimp FEDORA-2013-22701
2014-02-03 00:00:00
Fedora Update for gimp FEDORA-2013-22771
2013-12-17 00:00:00
nessus
nessus
Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)
2013-12-17 00:00:00
Fedora 20 : gimp-2.8.10-4.fc20 (2013-22701)
2013-12-14 00:00:00
Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)
2013-12-18 00:00:00
ubuntu
ubuntu
GIMP vulnerability
2013-12-09 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: gimp-2.8.10-4.fc20
2013-12-14 02:52:35
[SECURITY] Fedora 18 Update: gimp-2.8.10-4.fc18
2013-12-16 22:56:52
[SECURITY] Fedora 19 Update: gimp-2.8.10-4.fc19
2013-12-16 23:03:12
mageia
mageia
Updated gimp package fixes security vulnerabilities
2013-12-07 02:00:45
securityvulns
securityvulns
GNU GIMP memory corruption
2013-12-09 00:00:00
[USN-2051-1] GIMP vulnerability
2013-12-09 00:00:00
redhat
redhat
(RHSA-2013:1778) Moderate: gimp security update
2013-12-03 00:00:00
veracode
veracode
Integer Overflow
2019-05-02 04:59:20
Arbitrary Code Execution
2019-05-02 04:59:20
gentoo
gentoo
GIMP: Multiple vulnerabilities
2016-03-06 00:00:00
centos
centos
gimp security update
2013-12-03 22:52:31
oraclelinux
oraclelinux
gimp security, bug fix, and enhancement update
2016-11-09 00:00:00
gimp security update
2013-12-03 00:00:00
debian
debian
[SECURITY] [DSA 2813-1] gimp security update
2013-12-09 17:11:44
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0.764
Percentile
98.2%
Related for NVD:CVE-2013-1978