Описание
Security update for gimp
This update for gimp fixes the following issues:
This security issue was fixed:
- CVE-2007-3126: Context-dependent attackers were able to cause a denial of service via an ICO file with an InfoHeader containing a Height of zero (bsc#1032241).
These non-security issues were fixed:
- bsc#1025717: Prefer lcms2 over lcms1 if both are available
- bgo#593576: Preven crash in PDF Import filter when importing large image PDF or specifying high resolution
Список пакетов
SUSE Linux Enterprise Desktop 12 SP2
gimp-2.8.18-8.1
gimp-lang-2.8.18-8.1
gimp-plugins-python-2.8.18-8.1
libgimp-2_0-0-2.8.18-8.1
libgimpui-2_0-0-2.8.18-8.1
SUSE Linux Enterprise Software Development Kit 12 SP2
gimp-devel-2.8.18-8.1
libgimp-2_0-0-2.8.18-8.1
libgimpui-2_0-0-2.8.18-8.1
SUSE Linux Enterprise Workstation Extension 12 SP2
gimp-2.8.18-8.1
gimp-lang-2.8.18-8.1
gimp-plugins-python-2.8.18-8.1
libgimp-2_0-0-2.8.18-8.1
libgimpui-2_0-0-2.8.18-8.1
Ссылки
- Link for SUSE-SU-2017:0945-1
- E-Mail link for SUSE-SU-2017:0945-1
- SUSE Security Ratings
- SUSE Bug 1025717
- SUSE Bug 1032241
- SUSE CVE CVE-2007-3126 page
Описание
Gimp before 2.8.22 allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:gimp-2.8.18-8.1
SUSE Linux Enterprise Desktop 12 SP2:gimp-lang-2.8.18-8.1
SUSE Linux Enterprise Desktop 12 SP2:gimp-plugins-python-2.8.18-8.1
SUSE Linux Enterprise Desktop 12 SP2:libgimp-2_0-0-2.8.18-8.1
Ссылки
- CVE-2007-3126
- SUSE Bug 1032241