CVE-2006-3404

Name of the Vulnerable Software and Affected Versions Gimp versions prior to 2.2.12

Description The issue is related to a buffer overflow in the xcf load vector function, which can be triggered by an XCF file containing a large num axes value in the VECTORS property. This could allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code.

Recommendations For versions prior to 2.2.12, update to version 2.2.12 or later to resolve the issue. As a temporary workaround, consider avoiding the use of XCF files with large num axes values in the VECTORS property until the update is applied.