Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Gimp: gimp: denial of service via integer overflow in playstation tim loader
Vulnerability Description
A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting in a value exceeding the maximum integer limit. An attacker could exploit this by providing a specially crafted image file, leading to undefined behavior and causing the GIMP plug-in to abort, effectively resulting in a denial of service.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
GIMP 数字错误漏洞
Vulnerability Description
GIMP是GIMP组织开源的一款开源的位图图像编辑器。 GIMP存在数字错误漏洞,该漏洞源于PlayStation TIM加载器在处理PlayStation图像文件时,因整数溢出错误计算Color Look-Up Table(CLUT)的大小,导致num_colors和num_cluts相乘结果超出最大整数限制,攻击者可通过提供特制图像文件导致GIMP插件中止,有效造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A