Описание
Security update for gimp
This update for gimp fixes the following issues:
- CVE-2022-30067: Fixed uncontrolled memory consumption via crafted XCF file (bsc#1199653).
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP3
gimp-2.10.12-150300.9.3.1
gimp-devel-2.10.12-150300.9.3.1
gimp-lang-2.10.12-150300.9.3.1
gimp-plugin-aa-2.10.12-150300.9.3.1
libgimp-2_0-0-2.10.12-150300.9.3.1
libgimpui-2_0-0-2.10.12-150300.9.3.1
SUSE Linux Enterprise Workstation Extension 15 SP3
gimp-2.10.12-150300.9.3.1
gimp-devel-2.10.12-150300.9.3.1
gimp-lang-2.10.12-150300.9.3.1
libgimp-2_0-0-2.10.12-150300.9.3.1
libgimpui-2_0-0-2.10.12-150300.9.3.1
openSUSE Leap 15.3
gimp-2.10.12-150300.9.3.1
gimp-devel-2.10.12-150300.9.3.1
gimp-lang-2.10.12-150300.9.3.1
gimp-plugin-aa-2.10.12-150300.9.3.1
libgimp-2_0-0-2.10.12-150300.9.3.1
libgimp-2_0-0-32bit-2.10.12-150300.9.3.1
libgimpui-2_0-0-2.10.12-150300.9.3.1
libgimpui-2_0-0-32bit-2.10.12-150300.9.3.1
Ссылки
- Link for SUSE-SU-2022:2063-1
- E-Mail link for SUSE-SU-2022:2063-1
- SUSE Security Ratings
- SUSE Bug 1199653
- SUSE CVE CVE-2022-30067 page
Описание
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP3:gimp-2.10.12-150300.9.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:gimp-devel-2.10.12-150300.9.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:gimp-lang-2.10.12-150300.9.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:gimp-plugin-aa-2.10.12-150300.9.3.1
Ссылки
- CVE-2022-30067
- SUSE Bug 1199653