CVE-2007-3741 Information

Description

The (1) psp (aka .tub) (2) bmp (3) pcx and (4) psd plugins in gimp allow user-assisted remote attackers to cause a denial of service (crash or memory consumption) via crafted image files as discovered using the fusil fuzzing tool.

Reference

http://osvdb.org/42128 http://osvdb.org/42129 http://osvdb.org/42130 http://osvdb.org/42131 http://secunia.com/advisories/26575 http://secunia.com/advisories/26939 http://www.mandriva.com/security/advisories?name=MDKSA-2007:170 http://www.redhat.com/support/errata/RHSA-2007-0513.html http://www.securityfocus.com/bid/25424 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A10099