Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability
From: Hongzhen Zhou <felix__zhou@xxxxxxxxxxx>
Date: 7 Mar 2005 08:30:38 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

In-Reply-To: <20050304163537.GA24606@xxxxxxx>

The bugzilla entry is http://bugzilla.gnome.org/show_bug.cgi?id=169113

The vendor has reponsed:
------- Additional Comment #2 From sven@xxxxxxxx 2005-03-03 12:51 ------- 
Added a sanity check in CVS HEAD. I don't consider this worth to be backported
to 2.2, closing as FIXED.

2005-03-03  Sven Neumann  <sven@xxxxxxxx>

        * plug-ins/common/gifload.c (ReadImage): added a sanity check for
        bogus frame dimensions. Fixes bug #169113.

Prev by Date: Gene6 FTP Server Local Privilege Escalation Vulnerability
Next by Date: Lingo VoIP ATA / UTStarcom iAN-02EX remote access vulnerability
Previous by thread: Re: GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability
Next by thread: Download Center Lite (DCL) - Arbitrary File Inclusion (VXSfx)
Index(es):
- Date
- Thread