CVE-2023-44441

GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVSS 7.8 HIGHEPSS 27.3%CWE-122

In short

GIMP has a security flaw when opening DDS image files that allows attackers to run malicious code on your computer if you open a specially crafted file. This happens because the program doesn't properly check file data before processing it.

Technical detail

A heap-based buffer overflow exists in GIMP's DDS file parser due to insufficient validation of user-supplied data length before copying to heap memory. Remote code execution is achievable when a user opens a malicious DDS file; the vulnerability requires user interaction but no authentication or special privileges.

Summary generated and translated by AI from the official description.

GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DDS files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22093.

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

GIMP · GIMP

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://lists.debian.org/debian-lts-announce/2023/11/msg00031.html https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/https://www.zerodayinitiative.com/advisories/ZDI-23-1592/