Nom du paquet
gimp
Date
2013-12-18
Advisory ID
MDVSA-2013:293
Affected versions
MBS1 x86_64

Problem description

Updated gimp package fixes security vulnerabilities:

An integer overflow flaw and a heap-based buffer overflow were found in
the way GIMP loaded certain X Window System (XWD) image dump files. A
remote attacker could provide a specially crafted XWD image file that,
when processed, would cause the XWD plug-in to crash or, potentially,
execute arbitrary code with the privileges of the user running the GIMP
(CVE-2013-1913, CVE-2013-1978).

Updated packages

MBS1 x86_64

 f15f770e4f29aa83895a448a68bb52f9  mbs1/x86_64/gimp-2.8.2-1.1.mbs1.x86_64.rpm
 d6e034a095663bdff562dfa31d24cb13  mbs1/x86_64/gimp-python-2.8.2-1.1.mbs1.x86_64.rpm
 a7f7cb682deb13ba751abf0fc32ce4c2  mbs1/x86_64/lib64gimp2.0_0-2.8.2-1.1.mbs1.x86_64.rpm
 a00244b9c15e58a5dac6f8502189cc32  mbs1/x86_64/lib64gimp2.0-devel-2.8.2-1.1.mbs1.x86_64.rpm 
 b439aff06112b9c94f3c11aa002bc9de  mbs1/SRPMS/gimp-2.8.2-1.1.mbs1.src.rpm

References