Unrated severityNVD Advisory· Published Aug 25, 2012· Updated Apr 29, 2026
CVE-2012-3481
CVE-2012-3481
Description
Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted height and len properties in a GIF image file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- lists.opensuse.org/opensuse-security-announce/2012-08/msg00023.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-updates/2012-09/msg00043.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2012-1180.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2012-1181.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2012/08/20/8nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/55101nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-1559-1nvdThird Party Advisory
- bugzilla.novell.com/show_bug.cginvdIssue TrackingThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- secunia.com/advisories/50296nvdBroken Link
- www.mandriva.com/security/advisoriesnvdBroken Link
- www.mandriva.com/security/advisoriesnvdBroken Link
News mentions
0No linked articles in our index yet.