Описание
Security update for gimp
This update for gimp fixes the following issues:
Security issue fixed:
- CVE-2017-17787: Fixed an out-of-bounds read in the PSP importer (bsc#1073628).
Non-security issue fixed:
- Fixed a software crash while importing a PostScript file (bsc#1178726).
Список пакетов
SUSE Linux Enterprise Workstation Extension 15 SP1
gimp-2.8.22-5.8.1
gimp-devel-2.8.22-5.8.1
gimp-lang-2.8.22-5.8.1
gimp-plugins-python-2.8.22-5.8.1
libgimp-2_0-0-2.8.22-5.8.1
libgimpui-2_0-0-2.8.22-5.8.1
Ссылки
- Link for SUSE-SU-2020:3940-1
- E-Mail link for SUSE-SU-2020:3940-1
- SUSE Security Ratings
- SUSE Bug 1073628
- SUSE Bug 1178726
- SUSE CVE CVE-2017-17787 page
Описание
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.
Затронутые продукты
SUSE Linux Enterprise Workstation Extension 15 SP1:gimp-2.8.22-5.8.1
SUSE Linux Enterprise Workstation Extension 15 SP1:gimp-devel-2.8.22-5.8.1
SUSE Linux Enterprise Workstation Extension 15 SP1:gimp-lang-2.8.22-5.8.1
SUSE Linux Enterprise Workstation Extension 15 SP1:gimp-plugins-python-2.8.22-5.8.1
Ссылки
- CVE-2017-17787
- SUSE Bug 1073628