Nom du paquet
gegl
Date
2013-04-09
Advisory ID
MDVSA-2013:081
Affected versions
MBS1 x86_64

Problem description

Updated gegl packages fix security vulnerability:

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the gegl utility processed .ppm (Portable Pixel Map)
image files. An attacker could create a specially-crafted .ppm file
that, when opened in gegl, would cause gegl to crash or, potentially,
execute arbitrary code (CVE-2012-4433).

Updated packages

MBS1 x86_64

 e1bc127b74a3afa4c069713df0ecee5c  mbs1/x86_64/gegl-0.2.0-3.1.mbs1.x86_64.rpm
 df96773ea6cfe50b4a8caac81cf37444  mbs1/x86_64/lib64gegl0.2_0-0.2.0-3.1.mbs1.x86_64.rpm
 3287174b503f3957e14ada86dfc80818  mbs1/x86_64/lib64gegl-devel-0.2.0-3.1.mbs1.x86_64.rpm 
 4ff49aba2b1bb698deaaf259aa686435  mbs1/SRPMS/gegl-0.2.0-3.1.mbs1.src.rpm

References