CVE-2012-2763
EPSS 88.8%
Description
Buffer overflow in the readstr_upto function in plug-ins/script-fu/tinyscheme/scheme.c in GIMP 2.6.12 and earlier, and possibly 2.6.13, allows remote attackers to execute arbitrary code via a long string in a command to the script-fu server.
How to fix CVE-2012-2763
To remediate CVE-2012-2763, upgrade the affected package to a fixed version below.
- Debian/gimp—upgrade to 2.8.0-1 or later
Is CVE-2012-2763 being exploited?
Likely — EPSS is 88.8%, placing CVE-2012-2763 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (1)
- from 0, < 2.8.0-1