GIMP Heap-Based Buffer Overflow Vulnerability in ICNS File Parsing Allowing Remote Code Execution

A heap-based buffer overflow vulnerability has been identified in GIMP, specifically within the ICNS file parsing component. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. The issue arises from inadequate validation of user-supplied data lengths before copying them to a heap-based buffer. Exploitation of this vulnerability requires user interaction, as the target must open a malicious ICNS file or visit a page containing one.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution on the affected system, executed in the context of the current process.

Reproduction

The vulnerability can be reproduced by opening a malicious ICNS file in GIMP. The file must be crafted to exploit the lack of proper validation in the ICNS importer, allowing for a heap-based buffer overflow.

Remediation

GIMP has released a patch for this vulnerability. Users should update to the latest version of GIMP to address this issue.