CVE-2012-3403

Publication date

2012-08-25 10:00:00

Family

redhat

State

PUBLISHED

Description

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."