CVE-2007-3126
EPSS 0.86%
Description
Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.
How to fix CVE-2007-3126
To remediate CVE-2007-3126, upgrade the affected package to a fixed version below.
- Debian/gimp—upgrade to 2.8.22-1 or later
Is CVE-2007-3126 being exploited?
Low — EPSS is 0.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.8.22-1