Описание
Security update for gimp
This update for gimp fixes the following issues:
- CVE_2022-30067: Fixed an out of memory when reading. (bsc#1199653)
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP4
gimp-2.10.30-150400.3.3.1
gimp-devel-2.10.30-150400.3.3.1
gimp-lang-2.10.30-150400.3.3.1
gimp-plugin-aa-2.10.30-150400.3.3.1
libgimp-2_0-0-2.10.30-150400.3.3.1
libgimpui-2_0-0-2.10.30-150400.3.3.1
SUSE Linux Enterprise Workstation Extension 15 SP4
gimp-2.10.30-150400.3.3.1
gimp-devel-2.10.30-150400.3.3.1
gimp-lang-2.10.30-150400.3.3.1
libgimp-2_0-0-2.10.30-150400.3.3.1
libgimpui-2_0-0-2.10.30-150400.3.3.1
openSUSE Leap 15.4
gimp-2.10.30-150400.3.3.1
gimp-devel-2.10.30-150400.3.3.1
gimp-lang-2.10.30-150400.3.3.1
gimp-plugin-aa-2.10.30-150400.3.3.1
libgimp-2_0-0-2.10.30-150400.3.3.1
libgimp-2_0-0-32bit-2.10.30-150400.3.3.1
libgimpui-2_0-0-2.10.30-150400.3.3.1
libgimpui-2_0-0-32bit-2.10.30-150400.3.3.1
Ссылки
- Link for SUSE-SU-2022:2619-1
- E-Mail link for SUSE-SU-2022:2619-1
- SUSE Security Ratings
- SUSE Bug 1199653
- SUSE CVE CVE-2022-30067 page
Описание
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP4:gimp-2.10.30-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:gimp-devel-2.10.30-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:gimp-lang-2.10.30-150400.3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:gimp-plugin-aa-2.10.30-150400.3.3.1
Ссылки
- CVE-2022-30067
- SUSE Bug 1199653