Mandrake Linux Security Advisory : gimp (MDKSA-2006:127)
Medium Nessus Plugin ID 23878
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp 2.2.x allows user-complicit attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property.
Updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.