SuSE 11.3 Security Update : gimp (SAT Patch Number 8856)
2014-02-11T00:00:00
ID SUSE_11_GIMP-140203.NASL Type nessus Reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. Modified 2020-04-02T00:00:00
Description
This update fixes the following security issues with gimp :
{"cve": [{"lastseen": "2019-05-29T18:12:26", "bulletinFamily": "NVD", "description": "Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.8.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large (1) red, (2) green, or (3) blue color mask in an XWD file.", "modified": "2013-12-05T05:20:00", "id": "CVE-2012-5576", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5576", "published": "2012-12-18T01:55:00", "title": "CVE-2012-5576", "type": "cve", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:13:02", "bulletinFamily": "NVD", "description": "Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when used with glib before 2.24, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large color entries value in an X Window System (XWD) image dump.", "modified": "2019-04-22T17:48:00", "id": "CVE-2013-1913", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1913", "published": "2013-12-12T18:55:00", "title": "CVE-2013-1913", "type": "cve", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:13:02", "bulletinFamily": "NVD", "description": "Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an X Window System (XWD) image dump with more colors than color map entries.", "modified": "2019-04-22T17:48:00", "id": "CVE-2013-1978", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1978", "published": "2013-12-12T18:55:00", "title": "CVE-2013-1978", "type": "cve", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "openvas": [{"lastseen": "2018-02-06T13:10:17", "bulletinFamily": "scanner", "description": "Check for the Version of gimp", "modified": "2018-02-05T00:00:00", "published": "2013-12-04T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881828", "id": "OPENVAS:881828", "title": "CentOS Update for gimp CESA-2013:1778 centos5 ", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for gimp CESA-2013:1778 centos5 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(881828);\n script_version(\"$Revision: 8672 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-05 17:39:18 +0100 (Mon, 05 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:10:20 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"CentOS Update for gimp CESA-2013:1778 centos5 \");\n\n tag_insight = \"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\n\";\n\n tag_affected = \"gimp on CentOS 5\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"CESA\", value: \"2013:1778\");\n script_xref(name: \"URL\" , value: \"http://lists.centos.org/pipermail/centos-announce/2013-December/020040.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of gimp\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:36:45", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2013-1778", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123508", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123508", "title": "Oracle Linux Local Check: ELSA-2013-1778", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-1778.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123508\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:04:49 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-1778\");\n script_tag(name:\"insight\", value:\"ELSA-2013-1778 - gimp security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-1778\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-1778.html\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux(5|6)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.2.13~3.el5_10\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.2.13~3.el5_10\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.2.13~3.el5_10\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.6.9~6.el6_5\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.6.9~6.el6_5\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-devel-tools\", rpm:\"gimp-devel-tools~2.6.9~6.el6_5\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-help-browser\", rpm:\"gimp-help-browser~2.6.9~6.el6_5\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.6.9~6.el6_5\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:38:07", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-23T00:00:00", "published": "2013-12-04T00:00:00", "id": "OPENVAS:1361412562310871088", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310871088", "title": "RedHat Update for gimp RHSA-2013:1778-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for gimp RHSA-2013:1778-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.871088\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:06:09 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"RedHat Update for gimp RHSA-2013:1778-01\");\n\n\n script_tag(name:\"affected\", value:\"gimp on Red Hat Enterprise Linux (v. 5 server),\n Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"insight\", value:\"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"RHSA\", value:\"2013:1778-01\");\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2013-December/msg00000.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'gimp'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_(6|5)\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-debuginfo\", rpm:\"gimp-debuginfo~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-help-browser\", rpm:\"gimp-help-browser~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-debuginfo\", rpm:\"gimp-debuginfo~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2017-07-25T10:51:53", "bulletinFamily": "scanner", "description": "Check for the Version of gimp", "modified": "2017-07-10T00:00:00", "published": "2013-12-04T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881826", "id": "OPENVAS:881826", "title": "CentOS Update for gimp CESA-2013:1778 centos6 ", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for gimp CESA-2013:1778 centos6 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(881826);\n script_version(\"$Revision: 6655 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:48:58 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:08:35 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"CentOS Update for gimp CESA-2013:1778 centos6 \");\n\n tag_insight = \"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\n\";\n\n tag_affected = \"gimp on CentOS 6\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"CESA\", value: \"2013:1778\");\n script_xref(name: \"URL\" , value: \"http://lists.centos.org/pipermail/centos-announce/2013-December/020034.html\");\n script_summary(\"Check for the Version of gimp\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel-tools\", rpm:\"gimp-devel-tools~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-help-browser\", rpm:\"gimp-help-browser~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-26T11:09:24", "bulletinFamily": "scanner", "description": "Check for the Version of gimp", "modified": "2018-01-26T00:00:00", "published": "2013-12-04T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=871088", "id": "OPENVAS:871088", "title": "RedHat Update for gimp RHSA-2013:1778-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for gimp RHSA-2013:1778-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(871088);\n script_version(\"$Revision: 8542 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-26 07:57:28 +0100 (Fri, 26 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:06:09 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"RedHat Update for gimp RHSA-2013:1778-01\");\n\n tag_insight = \"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\n\";\n\n tag_affected = \"gimp on Red Hat Enterprise Linux (v. 5 server),\n Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"RHSA\", value: \"2013:1778-01\");\n script_xref(name: \"URL\" , value: \"https://www.redhat.com/archives/rhsa-announce/2013-December/msg00000.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of gimp\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-debuginfo\", rpm:\"gimp-debuginfo~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-help-browser\", rpm:\"gimp-help-browser~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.6.9~6.el6_5\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-debuginfo\", rpm:\"gimp-debuginfo~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.2.13~3.el5_10\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:37:51", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2013-12-04T00:00:00", "id": "OPENVAS:1361412562310881826", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881826", "title": "CentOS Update for gimp CESA-2013:1778 centos6", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for gimp CESA-2013:1778 centos6\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.881826\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:08:35 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"CentOS Update for gimp CESA-2013:1778 centos6\");\n\n script_tag(name:\"affected\", value:\"gimp on CentOS 6\");\n script_tag(name:\"insight\", value:\"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"CESA\", value:\"2013:1778\");\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2013-December/020034.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'gimp'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS6\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS6\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel-tools\", rpm:\"gimp-devel-tools~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-help-browser\", rpm:\"gimp-help-browser~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.6.9~6.el6_5\", rls:\"CentOS6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:38:02", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2013-12-04T00:00:00", "id": "OPENVAS:1361412562310881828", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881828", "title": "CentOS Update for gimp CESA-2013:1778 centos5", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for gimp CESA-2013:1778 centos5\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.881828\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-04 10:10:20 +0530 (Wed, 04 Dec 2013)\");\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"CentOS Update for gimp CESA-2013:1778 centos5\");\n\n script_tag(name:\"affected\", value:\"gimp on CentOS 5\");\n script_tag(name:\"insight\", value:\"The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"CESA\", value:\"2013:1778\");\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2013-December/020040.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'gimp'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-devel\", rpm:\"gimp-devel~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gimp-libs\", rpm:\"gimp-libs~2.2.13~3.el5_10\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2017-07-24T12:52:07", "bulletinFamily": "scanner", "description": "Murray McAllister discovered multiple integer and buffer overflows in the\nXWD plugin in Gimp, which can result in the execution of arbitrary code.", "modified": "2017-07-07T00:00:00", "published": "2013-12-09T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=892813", "id": "OPENVAS:892813", "title": "Debian Security Advisory DSA 2813-1 (gimp - several vulnerabilities)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2813.nasl 6611 2017-07-07 12:07:20Z cfischer $\n# Auto-generated from advisory DSA 2813-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\n\ntag_affected = \"gimp on Debian Linux\";\ntag_insight = \"GIMP lets you draw, paint, edit images, and much more! GIMP\nincludes the functionality and plug-ins of other famous image\nediting and processing programs.\";\ntag_solution = \"For the oldstable distribution (squeeze), these problems have been fixed\nin version 2.6.10-1+squeeze4. This update also fixes CVE-2012-3403,\nCVE-2012-3481 and CVE-2012-5576 \n.\n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 2.8.2-2+deb7u1.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your gimp packages.\";\ntag_summary = \"Murray McAllister discovered multiple integer and buffer overflows in the\nXWD plugin in Gimp, which can result in the execution of arbitrary code.\";\ntag_vuldetect = \"This check tests the installed software version using the apt package manager.\";\n\nif(description)\n{\n script_id(892813);\n script_version(\"$Revision: 6611 $\");\n script_cve_id(\"CVE-2012-3481\", \"CVE-2012-5576\", \"CVE-2013-1978\", \"CVE-2013-1913\", \"CVE-2012-3403\");\n script_name(\"Debian Security Advisory DSA 2813-1 (gimp - several vulnerabilities)\");\n script_tag(name: \"last_modification\", value:\"$Date: 2017-07-07 14:07:20 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value:\"2013-12-09 00:00:00 +0100 (Mon, 09 Dec 2013)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2013/dsa-2813.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: tag_affected);\n script_tag(name: \"insight\", value: tag_insight);\n# script_tag(name: \"impact\", value: tag_impact);\n script_tag(name: \"solution\", value: tag_solution);\n script_tag(name: \"summary\", value: tag_summary);\n script_tag(name: \"vuldetect\", value: tag_vuldetect);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"gimp-data\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"gimp-dbg\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0-dev\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0-doc\", ver:\"2.6.10-1+squeeze4\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"gimp-data\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"gimp-dbg\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0-dev\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgimp2.0-doc\", ver:\"2.8.2-2+deb7u1\", rls:\"DEB7.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-01-18T11:08:45", "bulletinFamily": "scanner", "description": "Check for the Version of gimp", "modified": "2018-01-18T00:00:00", "published": "2013-12-17T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841652", "id": "OPENVAS:841652", "title": "Ubuntu Update for gimp USN-2051-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2051_1.nasl 8456 2018-01-18 06:58:40Z teissa $\n#\n# Ubuntu Update for gimp USN-2051-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841652);\n script_version(\"$Revision: 8456 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-18 07:58:40 +0100 (Thu, 18 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 12:07:37 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for gimp USN-2051-1\");\n\n tag_insight = \"Murray McAllister discovered that GIMP incorrectly handled\nmalformed XWD files. If a user were tricked into opening a specially crafted\nXWD file, an attacker could cause GIMP to crash, or possibly execute arbitrary\ncode with the user's privileges.\";\n\n tag_affected = \"gimp on Ubuntu 13.10 ,\n Ubuntu 13.04 ,\n Ubuntu 12.10 ,\n Ubuntu 12.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2051-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2051-1/\");\n script_tag(name: \"summary\" , value: \"Check for the Version of gimp\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.8.2-1ubuntu1.2\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.6.12-1ubuntu1.3\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU13.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.8.6-1ubuntu1.1\", rls:\"UBUNTU13.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU13.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"gimp\", ver:\"2.8.4-1ubuntu1.1\", rls:\"UBUNTU13.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:37:17", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2014-02-03T00:00:00", "id": "OPENVAS:1361412562310867355", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867355", "title": "Fedora Update for gimp FEDORA-2013-22701", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for gimp FEDORA-2013-22701\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867355\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-02-03 20:08:31 +0530 (Mon, 03 Feb 2014)\");\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_name(\"Fedora Update for gimp FEDORA-2013-22701\");\n script_tag(name:\"affected\", value:\"gimp on Fedora 20\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"FEDORA\", value:\"2013-22701\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123547.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'gimp'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC20\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"gimp\", rpm:\"gimp~2.8.10~4.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "centos": [{"lastseen": "2019-12-20T18:25:39", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2013:1778\n\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-December/032072.html\nhttp://lists.centos.org/pipermail/centos-announce/2013-December/032078.html\n\n**Affected packages:**\ngimp\ngimp-devel\ngimp-devel-tools\ngimp-help-browser\ngimp-libs\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1778.html", "modified": "2013-12-03T23:07:52", "published": "2013-12-03T22:52:31", "href": "http://lists.centos.org/pipermail/centos-announce/2013-December/032072.html", "id": "CESA-2013:1778", "title": "gimp security update", "type": "centos", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "nessus": [{"lastseen": "2020-04-01T02:13:15", "bulletinFamily": "scanner", "description": "Updated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.", "modified": "2020-04-02T00:00:00", "id": "REDHAT-RHSA-2013-1778.NASL", "href": "https://www.tenable.com/plugins/nessus/71189", "published": "2013-12-04T00:00:00", "title": "RHEL 5 / 6 : gimp (RHSA-2013:1778)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:1778. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71189);\n script_version(\"1.16\");\n script_cvs_date(\"Date: 2019/10/24 15:35:37\");\n\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(56647, 64105);\n script_xref(name:\"RHSA\", value:\"2013:1778\");\n\n script_name(english:\"RHEL 5 / 6 : gimp (RHSA-2013:1778)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2013:1778\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2012-5576\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-1978\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-1913\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp-devel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp-help-browser\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gimp-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.5\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/12/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x / 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:1778\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"gimp-debuginfo-2.2.13-3.el5_10\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"gimp-devel-2.2.13-3.el5_10\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"gimp-libs-2.2.13-3.el5_10\")) flag++;\n\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"gimp-debuginfo-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"gimp-devel-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", reference:\"gimp-libs-2.6.9-6.el6_5\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp / gimp-debuginfo / gimp-devel / gimp-devel-tools / etc\");\n }\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-18T02:47:15", "bulletinFamily": "scanner", "description": "A stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe GIMP must be restarted for the update to take effect.", "modified": "2013-12-10T00:00:00", "id": "SL_20131203_GIMP_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/nessus/71303", "published": "2013-12-10T00:00:00", "title": "Scientific Linux Security Update : gimp on SL5.x, SL6.x i386/x86_64 (20131203)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71303);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n\n script_name(english:\"Scientific Linux Security Update : gimp on SL5.x, SL6.x i386/x86_64 (20131203)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe GIMP must be restarted for the update to take effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1312&L=scientific-linux-errata&T=0&P=1925\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?59064db9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp-devel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp-help-browser\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:gimp-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/12/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/10\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nos_ver = pregmatch(pattern: \"Scientific Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Scientific Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Scientific Linux 6.x\", \"Scientific Linux \" + os_ver);\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"gimp-debuginfo-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"gimp-devel-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"gimp-libs-2.2.13-3.el5_10\")) flag++;\n\nif (rpm_check(release:\"SL6\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"gimp-debuginfo-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"gimp-devel-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"gimp-libs-2.6.9-6.el6_5\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp / gimp-debuginfo / gimp-devel / gimp-devel-tools / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-04-01T02:01:54", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2013:1778 :\n\nUpdated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.", "modified": "2020-04-02T00:00:00", "id": "ORACLELINUX_ELSA-2013-1778.NASL", "href": "https://www.tenable.com/plugins/nessus/71186", "published": "2013-12-04T00:00:00", "title": "Oracle Linux 5 / 6 : gimp (ELSA-2013-1778)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2013:1778 and \n# Oracle Linux Security Advisory ELSA-2013-1778 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71186);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2019/09/30 10:58:18\");\n\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(56647, 64098, 64105);\n script_xref(name:\"RHSA\", value:\"2013:1778\");\n\n script_name(english:\"Oracle Linux 5 / 6 : gimp (ELSA-2013-1778)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2013:1778 :\n\nUpdated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-December/003848.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-December/003850.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gimp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gimp-devel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gimp-help-browser\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gimp-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/12/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5 / 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"gimp-devel-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"gimp-libs-2.2.13-3.el5_10\")) flag++;\n\nif (rpm_check(release:\"EL6\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"gimp-devel-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"gimp-libs-2.6.9-6.el6_5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp / gimp-devel / gimp-devel-tools / gimp-help-browser / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-04-01T06:49:33", "bulletinFamily": "scanner", "description": "Updated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.", "modified": "2020-04-02T00:00:00", "id": "CENTOS_RHSA-2013-1778.NASL", "href": "https://www.tenable.com/plugins/nessus/71178", "published": "2013-12-04T00:00:00", "title": "CentOS 5 / 6 : gimp (CESA-2013:1778)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:1778 and \n# CentOS Errata and Security Advisory 2013:1778 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71178);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2020/01/06\");\n\n script_cve_id(\"CVE-2012-5576\", \"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(56647, 64098, 64105);\n script_xref(name:\"RHSA\", value:\"2013:1778\");\n\n script_name(english:\"CentOS 5 / 6 : gimp (CESA-2013:1778)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gimp packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 5 and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and\nan integer overflow flaw were found in the way GIMP loaded certain X\nWindow System (XWD) image dump files. A remote attacker could provide\na specially crafted XWD image file that, when processed, would cause\nthe XWD plug-in to crash or, potentially, execute arbitrary code with\nthe privileges of the user running the GIMP. (CVE-2012-5576,\nCVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages,\nwhich correct these issues. The GIMP must be restarted for the update\nto take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2013-December/020034.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?775d3289\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2013-December/020040.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ded95208\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2012-5576\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gimp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gimp-devel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gimp-help-browser\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gimp-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/12/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 5.x / 6.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"gimp-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"gimp-devel-2.2.13-3.el5_10\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"gimp-libs-2.2.13-3.el5_10\")) flag++;\n\nif (rpm_check(release:\"CentOS-6\", reference:\"gimp-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"gimp-devel-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"gimp-devel-tools-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"gimp-help-browser-2.6.9-6.el6_5\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"gimp-libs-2.6.9-6.el6_5\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp / gimp-devel / gimp-devel-tools / gimp-help-browser / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:22:30", "bulletinFamily": "scanner", "description": "This update fixes buffer overflows in the XWD loader.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2013-12-17T00:00:00", "id": "FEDORA_2013-22776.NASL", "href": "https://www.tenable.com/plugins/nessus/71476", "published": "2013-12-17T00:00:00", "title": "Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-22776.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71476);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_xref(name:\"FEDORA\", value:\"2013-22776\");\n\n script_name(english:\"Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes buffer overflows in the XWD loader.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1037720\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-December/124185.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a49d9fb4\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"gimp-2.8.10-4.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-04-01T01:09:30", "bulletinFamily": "scanner", "description": "Updated gimp package fixes security vulnerabilities :\n\nAn integer overflow flaw and a heap-based buffer overflow were found\nin the way GIMP loaded certain X Window System (XWD) image dump files.\nA remote attacker could provide a specially crafted XWD image file\nthat, when processed, would cause the XWD plug-in to crash or,\npotentially, execute arbitrary code with the privileges of the user\nrunning the GIMP (CVE-2013-1913, CVE-2013-1978).", "modified": "2020-04-02T00:00:00", "id": "MANDRIVA_MDVSA-2013-293.NASL", "href": "https://www.tenable.com/plugins/nessus/71512", "published": "2013-12-18T00:00:00", "title": "Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2013:293. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71512);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/10/16 10:34:21\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(64098, 64105);\n script_xref(name:\"MDVSA\", value:\"2013:293\");\n\n script_name(english:\"Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gimp package fixes security vulnerabilities :\n\nAn integer overflow flaw and a heap-based buffer overflow were found\nin the way GIMP loaded certain X Window System (XWD) image dump files.\nA remote attacker could provide a specially crafted XWD image file\nthat, when processed, would cause the XWD plug-in to crash or,\npotentially, execute arbitrary code with the privileges of the user\nrunning the GIMP (CVE-2013-1913, CVE-2013-1978).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://advisories.mageia.org/MGASA-2013-0365.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gimp-python\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gimp2.0-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gimp2.0_0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"gimp-2.8.2-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"gimp-python-2.8.2-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64gimp2.0-devel-2.8.2-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64gimp2.0_0-2.8.2-1.1.mbs1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-04-01T03:09:12", "bulletinFamily": "scanner", "description": "Murray McAllister discovered that GIMP incorrectly handled malformed\nXWD files. If a user were tricked into opening a specially crafted XWD\nfile, an attacker could cause GIMP to crash, or possibly execute\narbitrary code with the user", "modified": "2020-04-02T00:00:00", "id": "UBUNTU_USN-2051-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71309", "published": "2013-12-10T00:00:00", "title": "Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : gimp vulnerability (USN-2051-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2051-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71309);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(64098, 64105);\n script_xref(name:\"USN\", value:\"2051-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : gimp vulnerability (USN-2051-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Murray McAllister discovered that GIMP incorrectly handled malformed\nXWD files. If a user were tricked into opening a specially crafted XWD\nfile, an attacker could cause GIMP to crash, or possibly execute\narbitrary code with the user's privileges.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2051-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:13.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:13.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/12/12\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/10\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04|12\\.10|13\\.04|13\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04 / 12.10 / 13.04 / 13.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"gimp\", pkgver:\"2.6.12-1ubuntu1.3\")) flag++;\nif (ubuntu_check(osver:\"12.10\", pkgname:\"gimp\", pkgver:\"2.8.2-1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"13.04\", pkgname:\"gimp\", pkgver:\"2.8.4-1ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"13.10\", pkgname:\"gimp\", pkgver:\"2.8.6-1ubuntu1.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:00:34", "bulletinFamily": "scanner", "description": "Murray McAllister discovered multiple integer and buffer overflows in\nthe XWD plugin in Gimp, which can result in the execution of arbitrary\ncode.", "modified": "2013-12-10T00:00:00", "id": "DEBIAN_DSA-2813.NASL", "href": "https://www.tenable.com/plugins/nessus/71276", "published": "2013-12-10T00:00:00", "title": "Debian DSA-2813-1 : gimp - several vulnerabilities", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2813. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71276);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_bugtraq_id(64098, 64105);\n script_xref(name:\"DSA\", value:\"2813\");\n\n script_name(english:\"Debian DSA-2813-1 : gimp - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Murray McAllister discovered multiple integer and buffer overflows in\nthe XWD plugin in Gimp, which can result in the execution of arbitrary\ncode.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2012-3403\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2012-3481\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2012-5576\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/gimp\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/gimp\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2013/dsa-2813\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the gimp packages.\n\nFor the oldstable distribution (squeeze), these problems have been\nfixed in version 2.6.10-1+squeeze4. This update also fixes\nCVE-2012-3403, CVE-2012-3481 and CVE-2012-5576.\n\nFor the stable distribution (wheezy), these problems have been fixed\nin version 2.8.2-2+deb7u1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"gimp\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"gimp-data\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"gimp-dbg\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libgimp2.0\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libgimp2.0-dev\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libgimp2.0-doc\", reference:\"2.6.10-1+squeeze4\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"gimp\", reference:\"2.8.2-2+deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"gimp-data\", reference:\"2.8.2-2+deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"gimp-dbg\", reference:\"2.8.2-2+deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libgimp2.0\", reference:\"2.8.2-2+deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libgimp2.0-dev\", reference:\"2.8.2-2+deb7u1\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libgimp2.0-doc\", reference:\"2.8.2-2+deb7u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:22:30", "bulletinFamily": "scanner", "description": "Overview of Changes from GIMP 2.8.8 to GIMP 2.8.10\n==================================================\n\nGUI :\n\n - Indicate if a file was exported in the Quit dialog\n\n - Add shortcuts and hint labels to the close and quit\n dialogs that make closing and quitting easier and more\n consistent\n\n - Rename the File->Export menu labels to match Save/Save\n as\n\n - Fix keyboard shortcuts on OSX Mavericks\n\n - Don", "modified": "2013-12-17T00:00:00", "id": "FEDORA_2013-22771.NASL", "href": "https://www.tenable.com/plugins/nessus/71475", "published": "2013-12-17T00:00:00", "title": "Fedora 18 : gimp-2.8.10-4.fc18 (2013-22771)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-22771.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71475);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_xref(name:\"FEDORA\", value:\"2013-22771\");\n\n script_name(english:\"Fedora 18 : gimp-2.8.10-4.fc18 (2013-22771)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Overview of Changes from GIMP 2.8.8 to GIMP 2.8.10\n==================================================\n\nGUI :\n\n - Indicate if a file was exported in the Quit dialog\n\n - Add shortcuts and hint labels to the close and quit\n dialogs that make closing and quitting easier and more\n consistent\n\n - Rename the File->Export menu labels to match Save/Save\n as\n\n - Fix keyboard shortcuts on OSX Mavericks\n\n - Don't open lots of progress popups when opening many\n files\n\n - Correctly restore the hidden state of docks in single\n window mode\n\nLibgimp :\n\n - Fix exporting an image consisting of a single layer\n group\n\n - Don't attempt to pick transparent colors\n\nPlug-ins :\n\n - Fix crash in LCMS plugin if RGB profile was missing\n\nGeneral :\n\n - Bug fixes\n\n - Translation updates Overview of Changes from GIMP\n 2.8.8 to GIMP 2.8.10\n ==================================================\n\nGUI :\n\n - Indicate if a file was exported in the Quit dialog\n\n - Add shortcuts and hint labels to the close and quit\n dialogs that make closing and quitting easier and more\n consistent\n\n - Rename the File->Export menu labels to match Save/Save\n as\n\n - Fix keyboard shortcuts on OSX Mavericks\n\n - Don't open lots of progress popups when opening many\n files\n\n - Correctly restore the hidden state of docks in single\n window mode\n\nLibgimp :\n\n - Fix exporting an image consisting of a single layer\n group\n\n - Don't attempt to pick transparent colors\n\nPlug-ins :\n\n - Fix crash in LCMS plugin if RGB profile was missing\n\nGeneral :\n\n - Bug fixes\n\n - Translation updates\n\nAdditionally, this update fixes buffer overflows in the XWD loader.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1037720\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-December/124160.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?d0f61aa4\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:18\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^18([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 18.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC18\", reference:\"gimp-2.8.10-4.fc18\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2020-03-17T23:22:30", "bulletinFamily": "scanner", "description": "This update fixes buffer overflows in the XWD loader.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2013-12-14T00:00:00", "id": "FEDORA_2013-22701.NASL", "href": "https://www.tenable.com/plugins/nessus/71419", "published": "2013-12-14T00:00:00", "title": "Fedora 20 : gimp-2.8.10-4.fc20 (2013-22701)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-22701.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71419);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2013-1913\", \"CVE-2013-1978\");\n script_xref(name:\"FEDORA\", value:\"2013-22701\");\n\n script_name(english:\"Fedora 20 : gimp-2.8.10-4.fc20 (2013-22701)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes buffer overflows in the XWD loader.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1037720\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123547.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c7057a71\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected gimp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:gimp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"gimp-2.8.10-4.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gimp\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:35:02", "bulletinFamily": "unix", "description": "[2:2.6.9-6]\n- fix overflow in XWD loader (CVE-2013-1913, CVE-2013-1978)\n[2:2.6.9-5]\n- fix overflow in XWD loader (#879302)\n[2:2.6.9-5]\n- fix overflow in GIF loader (#847303)\n[2:2.6.9-5]\n- fix overflows in GIF, CEL loaders (#727800, #839020)\n[2:2.6.9-4.1]\n- fix various overflows (#666793, #703403, #703405, #703407, #704512)", "modified": "2013-12-03T00:00:00", "published": "2013-12-03T00:00:00", "id": "ELSA-2013-1778", "href": "http://linux.oracle.com/errata/ELSA-2013-1778.html", "title": "gimp security update", "type": "oraclelinux", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:35:51", "bulletinFamily": "unix", "description": "gimp\n[2:2.8.16-3]\n- fix multiple use-after-free bugs when parsing XCF channel and layer\n properties (#1348617)\n[2:2.8.16-2]\n- add back obsoletes necessary for RHEL\n[2:2.8.16-1]\n- version 2.8.16\n[2:2.8.14-3]\n- export-dialog-destroyed-crash patch: avoid subsequent warnings\n[2:2.8.14-2]\n- fix linking problem\n- use %buildroot macro consistently again\n[2:2.8.14-2]\n- avoid destroying dialog and occasional crashes while exporting (#1215905)\n[2:2.8.14-1.2]\n- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild\n[2:2.8.14-1.1]\n- Use better AppData screenshots\n[2:2.8.14-1]\n- version 2.8.14\n[2:2.8.10-6.2]\n- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild\n- update source URL\n[2:2.8.10-6.1]\n- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild\n[2:2.8.10-6]\n- remove ancient obsoletes (#1002109)\n[2:2.8.10-5]\n- cope with freetype >= 2.5.1 include madness\n[2:2.8.10-5]\n- remove BRs contained in the minimal build environment\n- group BRs into libraries and tools\n- remove various old cruft\n- ship RPM macros for packaging plug-ins e.a. (#1063144)\n[2:2.8.10-4]\n- avoid buffer overflows in file-xwd plug-in (CVE-2013-1913, CVE-2013-1978)\ngimp-help\n[2.8.2-1]\n- version 2.8.2\n- use %global instead of %define\n- fix website and source URLs", "modified": "2016-11-09T00:00:00", "published": "2016-11-09T00:00:00", "id": "ELSA-2016-2589", "href": "http://linux.oracle.com/errata/ELSA-2016-2589.html", "title": "gimp security, bug fix, and enhancement update", "type": "oraclelinux", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "redhat": [{"lastseen": "2019-08-13T18:45:09", "bulletinFamily": "unix", "description": "The GIMP (GNU Image Manipulation Program) is an image composition and\nediting program.\n\nA stack-based buffer overflow flaw, a heap-based buffer overflow, and an\ninteger overflow flaw were found in the way GIMP loaded certain X Window\nSystem (XWD) image dump files. A remote attacker could provide a specially\ncrafted XWD image file that, when processed, would cause the XWD plug-in to\ncrash or, potentially, execute arbitrary code with the privileges of the\nuser running the GIMP. (CVE-2012-5576, CVE-2013-1913, CVE-2013-1978)\n\nThe CVE-2013-1913 and CVE-2013-1978 issues were discovered by Murray\nMcAllister of the Red Hat Security Response Team.\n\nUsers of the GIMP are advised to upgrade to these updated packages, which\ncorrect these issues. The GIMP must be restarted for the update to take\neffect.\n", "modified": "2018-06-06T20:24:08", "published": "2013-12-03T05:00:00", "id": "RHSA-2013:1778", "href": "https://access.redhat.com/errata/RHSA-2013:1778", "type": "redhat", "title": "(RHSA-2013:1778) Moderate: gimp security update", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "debian": [{"lastseen": "2019-05-30T02:21:46", "bulletinFamily": "unix", "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2813-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nDecember 09, 2013 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : gimp\nVulnerability : several\nProblem type : local(remote)\nDebian-specific: no\nCVE ID : CVE-2013-1913 CVE-2013-1978\n\nMurray McAllister discovered multiple integer and buffer overflows in the\nXWD plugin in Gimp, which can result in the execution of arbitrary code.\n\nFor the oldstable distribution (squeeze), these problems have been fixed \nin version 2.6.10-1+squeeze4. This update also fixes CVE-2012-3403, \nCVE-2012-3481 and CVE-2012-5576.\n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 2.8.2-2+deb7u1.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your gimp packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "modified": "2013-12-09T17:12:13", "published": "2013-12-09T17:12:13", "id": "DEBIAN:DSA-2813-1:44D3F", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2013/msg00227.html", "title": "[SECURITY] [DSA 2813-1] gimp security update", "type": "debian", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:50", "bulletinFamily": "software", "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2051-1\r\nDecember 09, 2013\r\n\r\ngimp vulnerability\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 13.10\r\n- Ubuntu 13.04\r\n- Ubuntu 12.10\r\n- Ubuntu 12.04 LTS\r\n\r\nSummary:\r\n\r\nGIMP could be made to crash or run programs as your login if it\r\nopened a specially crafted file.\r\n\r\nSoftware Description:\r\n- gimp: The GNU Image Manipulation Program\r\n\r\nDetails:\r\n\r\nMurray McAllister discovered that GIMP incorrectly handled malformed XWD\r\nfiles. If a user were tricked into opening a specially crafted XWD file, an\r\nattacker could cause GIMP to crash, or possibly execute arbitrary code with\r\nthe user's privileges.\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 13.10:\r\n gimp 2.8.6-1ubuntu1.1\r\n\r\nUbuntu 13.04:\r\n gimp 2.8.4-1ubuntu1.1\r\n\r\nUbuntu 12.10:\r\n gimp 2.8.2-1ubuntu1.2\r\n\r\nUbuntu 12.04 LTS:\r\n gimp 2.6.12-1ubuntu1.3\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2051-1\r\n CVE-2013-1913, CVE-2013-1978\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/gimp/2.8.6-1ubuntu1.1\r\n https://launchpad.net/ubuntu/+source/gimp/2.8.4-1ubuntu1.1\r\n https://launchpad.net/ubuntu/+source/gimp/2.8.2-1ubuntu1.2\r\n https://launchpad.net/ubuntu/+source/gimp/2.6.12-1ubuntu1.3\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "modified": "2013-12-09T00:00:00", "published": "2013-12-09T00:00:00", "id": "SECURITYVULNS:DOC:30119", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30119", "title": "[USN-2051-1] GIMP vulnerability", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:53", "bulletinFamily": "software", "description": "Memory corruption on XWD files parsing.", "modified": "2013-12-09T00:00:00", "published": "2013-12-09T00:00:00", "id": "SECURITYVULNS:VULN:13451", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:13451", "title": "GNU GIMP memory corruption", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:49", "bulletinFamily": "software", "description": "Memory corruption on XWD files parsing.", "modified": "2012-12-11T00:00:00", "published": "2012-12-11T00:00:00", "id": "SECURITYVULNS:VULN:12770", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12770", "title": "GNU GIMP memory corruption", "type": "securityvulns", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:46", "bulletinFamily": "software", "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-1659-1\r\nDecember 10, 2012\r\n\r\ngimp vulnerability\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 12.10\r\n- Ubuntu 12.04 LTS\r\n- Ubuntu 11.10\r\n- Ubuntu 10.04 LTS\r\n\r\nSummary:\r\n\r\nGIMP could be made to crash or run programs as your login if it opened a\r\nspecially crafted file.\r\n\r\nSoftware Description:\r\n- gimp: The GNU Image Manipulation Program\r\n\r\nDetails:\r\n\r\nIt was discovered that GIMP incorrectly handled malformed XWD files. If a\r\nuser were tricked into opening a specially crafted XWD file, an attacker\r\ncould cause GIMP to crash, or possibly execute arbitrary code with the\r\nuser's privileges.\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 12.10:\r\n gimp 2.8.2-1ubuntu1.1\r\n\r\nUbuntu 12.04 LTS:\r\n gimp 2.6.12-1ubuntu1.2\r\n\r\nUbuntu 11.10:\r\n gimp 2.6.11-2ubuntu4.2\r\n\r\nUbuntu 10.04 LTS:\r\n gimp 2.6.8-2ubuntu1.6\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-1659-1\r\n CVE-2012-5576\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/gimp/2.8.2-1ubuntu1.1\r\n https://launchpad.net/ubuntu/+source/gimp/2.6.12-1ubuntu1.2\r\n https://launchpad.net/ubuntu/+source/gimp/2.6.11-2ubuntu4.2\r\n https://launchpad.net/ubuntu/+source/gimp/2.6.8-2ubuntu1.6\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "modified": "2012-12-11T00:00:00", "published": "2012-12-11T00:00:00", "id": "SECURITYVULNS:DOC:28852", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28852", "title": "[USN-1659-1] GIMP vulnerability", "type": "securityvulns", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2019-05-29T17:22:36", "bulletinFamily": "unix", "description": "Murray McAllister discovered that GIMP incorrectly handled malformed XWD files. If a user were tricked into opening a specially crafted XWD file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user\u2019s privileges.", "modified": "2013-12-09T00:00:00", "published": "2013-12-09T00:00:00", "id": "USN-2051-1", "href": "https://usn.ubuntu.com/2051-1/", "title": "GIMP vulnerability", "type": "ubuntu", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T17:21:16", "bulletinFamily": "unix", "description": "It was discovered that GIMP incorrectly handled malformed XWD files. If a user were tricked into opening a specially crafted XWD file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user\u2019s privileges.", "modified": "2012-12-10T00:00:00", "published": "2012-12-10T00:00:00", "id": "USN-1659-1", "href": "https://usn.ubuntu.com/1659-1/", "title": "GIMP vulnerability", "type": "ubuntu", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:26", "bulletinFamily": "unix", "description": "### Background\n\nGIMP is a cross-platform image editor available for GNU/Linux, OS X, Windows and more operating systems. \n\n### Description\n\nGIMP\u2019s network server, scriptfu, is vulnerable to the remote execution of arbitrary code via the python-fu-eval command due to not requiring authentication. Additionally, the X Window Dump (XWD) plugin is vulnerable to multiple buffer overflows possibly allowing the remote execution of arbitrary code or Denial of Service. The XWD plugin is vulnerable due to not validating large color entries. \n\n### Impact\n\nA remote attacker could possibly execute arbitrary code with the privileges of the process due or perform a Denial of Service. \n\n### Workaround\n\nThere is no known work around at this time.\n\n### Resolution\n\nAll GIMP users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=media-gfx/gimp-2.8.0\"", "modified": "2016-05-04T00:00:00", "published": "2016-03-06T00:00:00", "id": "GLSA-201603-01", "href": "https://security.gentoo.org/glsa/201603-01", "type": "gentoo", "title": "GIMP: Multiple vulnerabilities", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-06T19:46:06", "bulletinFamily": "unix", "description": "### Background\n\nGIMP is the GNU Image Manipulation Program.\n\n### Description\n\nMultiple vulnerabilities have been discovered in GIMP. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could entice a user to open a specially crafted KiSS palette, GIF image or XWD file using GIMP, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll GIMP users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=media-gfx/gimp-2.8.2-r1\"", "modified": "2013-11-10T00:00:00", "published": "2013-11-10T00:00:00", "id": "GLSA-201311-05", "href": "https://security.gentoo.org/glsa/201311-05", "type": "gentoo", "title": "GIMP: Multiple vulnerabilities", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "kaspersky": [{"lastseen": "2019-03-21T00:14:18", "bulletinFamily": "info", "description": "### *Detect date*:\n12/17/2012\n\n### *Severity*:\nCritical\n\n### *Description*:\nA buffer overflow was found in GIMP. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XWD file.\n\n### *Affected products*:\nGIMP version 2.8.2\n\n### *Solution*:\nUpdate to latest version\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[GIMP](<https://threats.kaspersky.com/en/product/GIMP/>)\n\n### *CVE-IDS*:\n[CVE-2012-5576](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5576>)7.5Critical", "modified": "2019-03-07T00:00:00", "published": "2012-12-17T00:00:00", "id": "KLA10168", "href": "https://threats.kaspersky.com/en/vulnerability/KLA10168", "title": "\r KLA10168DoS vulnerability in GIMP ", "type": "kaspersky", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
