Описание
Security update for gimp
This update for gimp fixes the following issue:
- CVE-2017-17787: Fixed an out-of-bounds read in the PSP importer (bsc#1073628).
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP5
gimp-devel-2.8.18-9.15.2
libgimp-2_0-0-2.8.18-9.15.2
libgimpui-2_0-0-2.8.18-9.15.2
SUSE Linux Enterprise Workstation Extension 12 SP5
gimp-2.8.18-9.15.2
gimp-lang-2.8.18-9.15.2
gimp-plugins-python-2.8.18-9.15.2
libgimp-2_0-0-2.8.18-9.15.2
libgimpui-2_0-0-2.8.18-9.15.2
Ссылки
- Link for SUSE-SU-2020:3944-1
- E-Mail link for SUSE-SU-2020:3944-1
- SUSE Security Ratings
- SUSE Bug 1073628
- SUSE CVE CVE-2017-17787 page
Описание
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.
Затронутые продукты
SUSE Linux Enterprise Software Development Kit 12 SP5:gimp-devel-2.8.18-9.15.2
SUSE Linux Enterprise Software Development Kit 12 SP5:libgimp-2_0-0-2.8.18-9.15.2
SUSE Linux Enterprise Software Development Kit 12 SP5:libgimpui-2_0-0-2.8.18-9.15.2
SUSE Linux Enterprise Workstation Extension 12 SP5:gimp-2.8.18-9.15.2
Ссылки
- CVE-2017-17787
- SUSE Bug 1073628