VYPR

rpm package

opensuse/gimp&distro=openSUSE Leap 15.1

pkg:rpm/opensuse/gimp&distro=openSUSE%20Leap%2015.1

Vulnerabilities (5)

  • CVE-2017-17789HigDec 20, 2017
    affected < 2.8.22-lp151.5.3.1fixed 2.8.22-lp151.5.3.1

    In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c.

  • CVE-2017-17787HigDec 20, 2017
    affected < 2.8.22-lp151.5.6.1fixed 2.8.22-lp151.5.6.1

    In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.

  • CVE-2017-17786HigDec 20, 2017
    affected < 2.8.22-lp151.5.9.1fixed 2.8.22-lp151.5.9.1

    In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected bits-per-pixel value for an RGBA image.

  • CVE-2017-17785HigDec 20, 2017
    affected < 2.8.22-lp151.5.9.1fixed 2.8.22-lp151.5.9.1

    In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_brun function in plug-ins/file-fli/fli.c.

  • CVE-2017-17784HigDec 20, 2017
    affected < 2.8.22-lp151.5.9.1fixed 2.8.22-lp151.5.9.1

    In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in plug-ins/common/file-gbr.c in the gbr import parser, related to mishandling of UTF-8 data.