ID CVE-2013-1913
Summary Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when used with glib before 2.24, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large color entries value in an X Window System (XWD) image dump.
References
Vulnerable Configurations
  • GIMP 2.6.0
    cpe:2.3:a:gimp:gimp:2.6.0
  • GIMP 2.6.1
    cpe:2.3:a:gimp:gimp:2.6.1
  • GIMP 2.6.2
    cpe:2.3:a:gimp:gimp:2.6.2
  • GIMP 2.6.3
    cpe:2.3:a:gimp:gimp:2.6.3
  • GIMP 2.6.4
    cpe:2.3:a:gimp:gimp:2.6.4
  • GIMP 2.6.5
    cpe:2.3:a:gimp:gimp:2.6.5
  • GIMP 2.6.6
    cpe:2.3:a:gimp:gimp:2.6.6
  • GIMP 2.6.7
    cpe:2.3:a:gimp:gimp:2.6.7
  • GIMP 2.6.8
    cpe:2.3:a:gimp:gimp:2.6.8
  • GIMP 2.6.9
    cpe:2.3:a:gimp:gimp:2.6.9
  • GNOME Glib 2.24.0
    cpe:2.3:a:gnome:glib:2.24.0
  • Red Hat Enterprise Linux 5
    cpe:2.3:o:redhat:enterprise_linux:5
  • Red Hat Enterprise Linux 6
    cpe:2.3:o:redhat:enterprise_linux:6
CVSS
Base: 6.8 (as of 13-12-2013 - 11:50)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2013-1778.NASL
    description Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The GIMP (GNU Image Manipulation Program) is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978) The CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray McAllister of the Red Hat Security Response Team. Users of the GIMP are advised to upgrade to these updated packages, which correct these issues. The GIMP must be restarted for the update to take effect.
    last seen 2019-01-16
    modified 2018-11-10
    plugin id 71189
    published 2013-12-04
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71189
    title RHEL 5 / 6 : gimp (RHSA-2013:1778)
  • NASL family Mandriva Local Security Checks
    NASL id MANDRIVA_MDVSA-2013-293.NASL
    description Updated gimp package fixes security vulnerabilities : An integer overflow flaw and a heap-based buffer overflow were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP (CVE-2013-1913, CVE-2013-1978).
    last seen 2019-01-16
    modified 2018-07-19
    plugin id 71512
    published 2013-12-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71512
    title Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2013-22776.NASL
    description This update fixes buffer overflows in the XWD loader. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2018-06-29
    plugin id 71476
    published 2013-12-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71476
    title Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2013-1778.NASL
    description From Red Hat Security Advisory 2013:1778 : Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The GIMP (GNU Image Manipulation Program) is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978) The CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray McAllister of the Red Hat Security Response Team. Users of the GIMP are advised to upgrade to these updated packages, which correct these issues. The GIMP must be restarted for the update to take effect.
    last seen 2019-01-16
    modified 2018-07-26
    plugin id 71186
    published 2013-12-04
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71186
    title Oracle Linux 5 / 6 : gimp (ELSA-2013-1778)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-2813.NASL
    description Murray McAllister discovered multiple integer and buffer overflows in the XWD plugin in Gimp, which can result in the execution of arbitrary code.
    last seen 2019-01-16
    modified 2018-11-10
    plugin id 71276
    published 2013-12-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71276
    title Debian DSA-2813-1 : gimp - several vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2013-22701.NASL
    description This update fixes buffer overflows in the XWD loader. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2018-06-29
    plugin id 71419
    published 2013-12-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71419
    title Fedora 20 : gimp-2.8.10-4.fc20 (2013-22701)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_GIMP-140203.NASL
    description This update fixes the following security issues with gimp : - XWD plugin g_new() integer overflow. (CVE-2013-1913). (bnc#853423) - XWD plugin color map heap-based buffer overflow. (CVE-2013-1978). (bnc#853425) - memory corruption via XWD files (CVE-2012-5576). (bnc#791372)
    last seen 2018-09-02
    modified 2018-06-29
    plugin id 72422
    published 2014-02-11
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=72422
    title SuSE 11.3 Security Update : gimp (SAT Patch Number 8856)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-2051-1.NASL
    description Murray McAllister discovered that GIMP incorrectly handled malformed XWD files. If a user were tricked into opening a specially crafted XWD file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user's privileges. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2018-12-01
    plugin id 71309
    published 2013-12-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71309
    title Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : gimp vulnerability (USN-2051-1)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20131203_GIMP_ON_SL5_X.NASL
    description A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978) The GIMP must be restarted for the update to take effect.
    last seen 2019-01-16
    modified 2018-12-31
    plugin id 71303
    published 2013-12-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71303
    title Scientific Linux Security Update : gimp on SL5.x, SL6.x i386/x86_64
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201603-01.NASL
    description The remote host is affected by the vulnerability described in GLSA-201603-01 (GIMP: Multiple vulnerabilities) GIMP’s network server, scriptfu, is vulnerable to the remote execution of arbitrary code via the python-fu-eval command due to not requiring authentication. Additionally, the X Window Dump (XWD) plugin is vulnerable to multiple buffer overflows possibly allowing the remote execution of arbitrary code or Denial of Service. The XWD plugin is vulnerable due to not validating large color entries. Impact : A remote attacker could possibly execute arbitrary code with the privileges of the process due or perform a Denial of Service. Workaround : There is no known work around at this time.
    last seen 2019-01-16
    modified 2018-06-29
    plugin id 89712
    published 2016-03-07
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=89712
    title GLSA-201603-01 : GIMP: Multiple vulnerabilities
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2013-1778.NASL
    description Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The GIMP (GNU Image Manipulation Program) is an image composition and editing program. A stack-based buffer overflow flaw, a heap-based buffer overflow, and an integer overflow flaw were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978) The CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray McAllister of the Red Hat Security Response Team. Users of the GIMP are advised to upgrade to these updated packages, which correct these issues. The GIMP must be restarted for the update to take effect.
    last seen 2019-01-16
    modified 2018-11-10
    plugin id 71178
    published 2013-12-04
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71178
    title CentOS 5 / 6 : gimp (CESA-2013:1778)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2013-22771.NASL
    description Overview of Changes from GIMP 2.8.8 to GIMP 2.8.10 ================================================== GUI : - Indicate if a file was exported in the Quit dialog - Add shortcuts and hint labels to the close and quit dialogs that make closing and quitting easier and more consistent - Rename the File->Export menu labels to match Save/Save as - Fix keyboard shortcuts on OSX Mavericks - Don't open lots of progress popups when opening many files - Correctly restore the hidden state of docks in single window mode Libgimp : - Fix exporting an image consisting of a single layer group - Don't attempt to pick transparent colors Plug-ins : - Fix crash in LCMS plugin if RGB profile was missing General : - Bug fixes - Translation updates Overview of Changes from GIMP 2.8.8 to GIMP 2.8.10 ================================================== GUI : - Indicate if a file was exported in the Quit dialog - Add shortcuts and hint labels to the close and quit dialogs that make closing and quitting easier and more consistent - Rename the File->Export menu labels to match Save/Save as - Fix keyboard shortcuts on OSX Mavericks - Don't open lots of progress popups when opening many files - Correctly restore the hidden state of docks in single window mode Libgimp : - Fix exporting an image consisting of a single layer group - Don't attempt to pick transparent colors Plug-ins : - Fix crash in LCMS plugin if RGB profile was missing General : - Bug fixes - Translation updates Additionally, this update fixes buffer overflows in the XWD loader. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-01-16
    modified 2018-06-29
    plugin id 71475
    published 2013-12-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71475
    title Fedora 18 : gimp-2.8.10-4.fc18 (2013-22771)
redhat via4
advisories
rhsa
id RHSA-2013:1778
rpms
  • gimp-2:2.2.13-3.el5_10
  • gimp-devel-2:2.2.13-3.el5_10
  • gimp-libs-2:2.2.13-3.el5_10
  • gimp-2:2.6.9-6.el6_5
  • gimp-devel-2:2.6.9-6.el6_5
  • gimp-devel-tools-2:2.6.9-6.el6_5
  • gimp-help-browser-2:2.6.9-6.el6_5
  • gimp-libs-2:2.6.9-6.el6_5
refmap via4
bid 64105
confirm https://bugzilla.redhat.com/show_bug.cgi?id=947868
debian DSA-2813
gentoo GLSA-201603-01
ubuntu USN-2051-1
Last major update 02-12-2016 - 22:00
Published 12-12-2013 - 13:55
Last modified 08-01-2018 - 21:29
Back to Top