Описание
Security update for gimp
This update for gimp fixes the following issues:
Security issue fixed:
- CVE-2017-17787: Fixed an out-of-bounds read in the PSP importer (bsc#1073628).
Non-security issue fixed:
- Fixed a software crash while importing a PostScript file (bsc#1178726).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.1
gimp-2.8.22-lp151.5.6.1
gimp-devel-2.8.22-lp151.5.6.1
gimp-lang-2.8.22-lp151.5.6.1
gimp-plugin-aa-2.8.22-lp151.5.6.1
gimp-plugins-python-2.8.22-lp151.5.6.1
libgimp-2_0-0-2.8.22-lp151.5.6.1
libgimp-2_0-0-32bit-2.8.22-lp151.5.6.1
libgimpui-2_0-0-2.8.22-lp151.5.6.1
libgimpui-2_0-0-32bit-2.8.22-lp151.5.6.1
Ссылки
- E-Mail link for openSUSE-SU-2020:2357-1
- SUSE Security Ratings
- SUSE Bug 1073628
- SUSE Bug 1178726
- SUSE CVE CVE-2017-17787 page
Описание
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.
Затронутые продукты
openSUSE Leap 15.1:gimp-2.8.22-lp151.5.6.1
openSUSE Leap 15.1:gimp-devel-2.8.22-lp151.5.6.1
openSUSE Leap 15.1:gimp-lang-2.8.22-lp151.5.6.1
openSUSE Leap 15.1:gimp-plugin-aa-2.8.22-lp151.5.6.1
Ссылки
- CVE-2017-17787
- SUSE Bug 1073628