Lucene search
OracleLinuxELSA-2016-2589HistoryNov 09, 2016 - 12:00 a.m.
gimp security, bug fix, and enhancement update
2016-11-0900:00:00
linux.oracle.com
18
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.843 High
EPSS
Percentile
98.2%
gimp
[2:2.8.16-3]
- fix multiple use-after-free bugs when parsing XCF channel and layer
properties (#1348617)
[2:2.8.16-2] - add back obsoletes necessary for RHEL
[2:2.8.16-1] - version 2.8.16
[2:2.8.14-3] - export-dialog-destroyed-crash patch: avoid subsequent warnings
[2:2.8.14-2] - fix linking problem
- use %buildroot macro consistently again
[2:2.8.14-2] - avoid destroying dialog and occasional crashes while exporting (#1215905)
[2:2.8.14-1.2] - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
[2:2.8.14-1.1] - Use better AppData screenshots
[2:2.8.14-1] - version 2.8.14
[2:2.8.10-6.2] - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
- update source URL
[2:2.8.10-6.1] - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
[2:2.8.10-6] - remove ancient obsoletes (#1002109)
[2:2.8.10-5] - cope with freetype >= 2.5.1 include madness
[2:2.8.10-5] - remove BRs contained in the minimal build environment
- group BRs into libraries and tools
- remove various old cruft
- ship RPM macros for packaging plug-ins e.a. (#1063144)
[2:2.8.10-4] - avoid buffer overflows in file-xwd plug-in (CVE-2013-1913, CVE-2013-1978)
gimp-help
[2.8.2-1] - version 2.8.2
- use %global instead of %define
- fix website and source URLs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | gimp | < 2.8.16-3.el7 | gimp-2.8.16-3.el7.src.rpm |
| oracle linux | 7 | src | gimp-help | < 2.8.2-1.el7 | gimp-help-2.8.2-1.el7.src.rpm |
| oracle linux | 7 | aarch64 | gimp | < 2.8.16-3.el7 | gimp-2.8.16-3.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | gimp-devel | < 2.8.16-3.el7 | gimp-devel-2.8.16-3.el7.aarch64.rpm |
| oracle linux | 7 | aarch64 | gimp-devel-tools | < 2.8.16-3.el7 | gimp-devel-tools-2.8.16-3.el7.aarch64.rpm |
| oracle linux | 7 | noarch | gimp-help | < 2.8.2-1.el7 | gimp-help-2.8.2-1.el7.noarch.rpm |
| oracle linux | 7 | noarch | gimp-help-ca | < 2.8.2-1.el7 | gimp-help-ca-2.8.2-1.el7.noarch.rpm |
| oracle linux | 7 | noarch | gimp-help-da | < 2.8.2-1.el7 | gimp-help-da-2.8.2-1.el7.noarch.rpm |
| oracle linux | 7 | noarch | gimp-help-de | < 2.8.2-1.el7 | gimp-help-de-2.8.2-1.el7.noarch.rpm |
| oracle linux | 7 | noarch | gimp-help-el | < 2.8.2-1.el7 | gimp-help-el-2.8.2-1.el7.noarch.rpm |
Related
fedora
fedora
[SECURITY] Fedora 18 Update: gimp-2.8.10-4.fc18
2013-12-16 22:56:52
[SECURITY] Fedora 20 Update: gimp-2.8.10-4.fc20
2013-12-14 02:52:35
[SECURITY] Fedora 19 Update: gimp-2.8.10-4.fc19
2013-12-16 23:03:12
nessus
nessus
Fedora 20 : gimp-2.8.10-4.fc20 (2013-22701)
2013-12-14 00:00:00
Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)
2013-12-17 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : gimp vulnerability (USN-2051-1)
2013-12-10 00:00:00
mageia
mageia
Updated gimp package fixes security vulnerabilities
2013-12-07 02:00:45
Updated gimp packages fix security vulnerability
2016-07-05 18:47:08
openvas
openvas
Ubuntu: Security Advisory (USN-2051-1)
2013-12-17 00:00:00
Fedora Update for gimp FEDORA-2013-22776
2013-12-17 00:00:00
Ubuntu Update for gimp USN-2051-1
2013-12-17 00:00:00
securityvulns
securityvulns
GNU GIMP memory corruption
2013-12-09 00:00:00
[USN-2051-1] GIMP vulnerability
2013-12-09 00:00:00
ubuntu
ubuntu
GIMP vulnerability
2013-12-09 00:00:00
GIMP vulnerability
2016-07-05 00:00:00
gentoo
gentoo
GIMP: Multiple vulnerabilities
2016-03-06 00:00:00
centos
centos
gimp security update
2013-12-03 22:52:31
gimp security update
2016-11-25 15:25:34
redhat
redhat
(RHSA-2013:1778) Moderate: gimp security update
2013-12-03 00:00:00
(RHSA-2016:2589) Moderate: gimp security, bug fix, and enhancement update
2016-11-03 06:07:15
veracode
veracode
Integer Overflow
2019-05-02 04:59:20
Arbitrary Code Execution
2019-05-02 04:59:20
oraclelinux
oraclelinux
gimp security update
2013-12-03 00:00:00
debian
debian
[SECURITY] [DLA 525-1] gimp security update
2016-06-25 15:58:34
[SECURITY] [DSA 2813-1] gimp security update
2013-12-09 17:12:13
[SECURITY] [DSA 3612-1] gimp security update
2016-07-01 19:14:05
debiancve
debiancve
ubuntucve
ubuntucve
cve
cve
archlinux
archlinux
gimp: arbitrary code execution
2016-07-17 00:00:00
prion
prion
Integer overflow
2013-12-12 18:55:00
Design/Logic Flaw
2016-07-12 19:59:00
Heap overflow
2013-12-12 18:55:00
osv
osv
gimp - security update
2016-06-25 00:00:00
redhatcve
redhatcve
CVE-2016-4994
2016-12-15 20:20:16
kaspersky
kaspersky
KLA10860 Code execution vulnerability in GIMP
2016-07-12 00:00:00
freebsd
freebsd
The GIMP -- Use after Free vulnerability
2016-06-20 00:00:00
slackware
slackware
[slackware-security] gimp
2016-07-21 23:38:02
checkpoint_advisories
checkpoint_advisories
GIMP XWD File Handling Heap Buffer Overflow (CVE-2013-1978)
2013-12-22 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.843 High
EPSS
Percentile
98.2%
Related for ELSA-2016-2589