Описание
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service (DoS).
A vulnerability was found in GIMP when loading a specially crafted XCF file. Due to an incorrect function return value, GIMP may access memory outside its address space, resulting in a denial of service.
Меры по смягчению последствий
Do not load untrusted XCF files.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | gimp | Out of support scope | ||
| Red Hat Enterprise Linux 7 | gimp | Out of support scope | ||
| Red Hat Enterprise Linux 8 | gimp:2.8/gimp | Affected | ||
| Red Hat Enterprise Linux 8 | gimp:flatpak/gimp | Affected | ||
| Red Hat Enterprise Linux 9 | gimp | Fixed | RHSA-2022:7978 | 15.11.2022 |
Показывать по
Дополнительная информация
Статус:
5.5 Medium
CVSS3
Связанные уязвимости
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service (DoS).
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service (DoS).
An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allow ...
5.5 Medium
CVSS3