Lucene search
RedHatRHSA-2012:1455HistoryNov 12, 2012 - 12:00 a.m.
(RHSA-2012:1455) Moderate: gegl security update
2012-11-1200:00:00
access.redhat.com
9
EPSS
0.059
Percentile
93.5%
GEGL (Generic Graphics Library) is a graph-based image processing
framework.
An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the gegl utility processed .ppm (Portable Pixel Map) image
files. An attacker could create a specially-crafted .ppm file that, when
opened in gegl, would cause gegl to crash or, potentially, execute
arbitrary code. (CVE-2012-4433)
This issue was discovered by Murray McAllister of the Red Hat Security
Response Team.
Users of gegl should upgrade to these updated packages, which contain a
backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | ppc64 | gegl-debuginfo | < 0.1.2-4.el6_3 | gegl-debuginfo-0.1.2-4.el6_3.ppc64.rpm |
| RedHat | 6 | ppc | gegl | < 0.1.2-4.el6_3 | gegl-0.1.2-4.el6_3.ppc.rpm |
| RedHat | 6 | i686 | gegl-debuginfo | < 0.1.2-4.el6_3 | gegl-debuginfo-0.1.2-4.el6_3.i686.rpm |
| RedHat | 6 | s390 | gegl-debuginfo | < 0.1.2-4.el6_3 | gegl-debuginfo-0.1.2-4.el6_3.s390.rpm |
| RedHat | 6 | ppc | gegl-debuginfo | < 0.1.2-4.el6_3 | gegl-debuginfo-0.1.2-4.el6_3.ppc.rpm |
| RedHat | 6 | ppc64 | gegl-devel | < 0.1.2-4.el6_3 | gegl-devel-0.1.2-4.el6_3.ppc64.rpm |
| RedHat | 6 | s390 | gegl | < 0.1.2-4.el6_3 | gegl-0.1.2-4.el6_3.s390.rpm |
| RedHat | 6 | ppc | gegl-devel | < 0.1.2-4.el6_3 | gegl-devel-0.1.2-4.el6_3.ppc.rpm |
| RedHat | 6 | src | gegl | < 0.1.2-4.el6_3 | gegl-0.1.2-4.el6_3.src.rpm |
| RedHat | 6 | i686 | gegl | < 0.1.2-4.el6_3 | gegl-0.1.2-4.el6_3.i686.rpm |
Related
openvas
openvas
Fedora Update for gegl FEDORA-2013-12115
2013-08-20 00:00:00
RedHat Update for gegl RHSA-2012:1455-01
2012-11-15 00:00:00
Fedora Update for gegl FEDORA-2013-12108
2013-07-16 00:00:00
nessus
nessus
Fedora 19 : gegl-0.2.0-11.fc19 (2013-12115)
2013-07-12 00:00:00
Fedora 18 : gegl-0.2.0-11.fc18 (2013-12108)
2013-07-12 00:00:00
openSUSE Security Update : gegl (openSUSE-2017-388)
2017-03-28 00:00:00
prion
prion
Integer overflow
2012-11-18 23:55:00
fedora
fedora
[SECURITY] Fedora 17 Update: gegl-0.2.0-11.fc17
2013-07-12 03:06:34
[SECURITY] Fedora 18 Update: gegl-0.2.0-11.fc18
2013-07-12 03:16:56
[SECURITY] Fedora 19 Update: gegl-0.2.0-11.fc19
2013-07-12 03:13:17
gentoo
gentoo
GEGL: User-assisted execution of arbitrary code
2013-10-06 00:00:00
slackware
slackware
[slackware-security] gegl
2017-09-28 06:39:07
centos
centos
gegl security update
2012-11-12 23:26:53
oraclelinux
oraclelinux
gegl security update
2012-11-12 00:00:00
ubuntucve
ubuntucve
CVE-2012-4433
2012-11-18 00:00:00
nvd
nvd
CVE-2012-4433
2012-11-18 23:55:00
cvelist
cvelist
CVE-2012-4433
2012-11-18 23:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:59:52
cve
cve
CVE-2012-4433
2012-11-18 23:55:00
debiancve
debiancve
CVE-2012-4433
2012-11-18 23:55:00
osv
osv
gegl-0.4.30-2.8 on GA media
2024-06-15 00:00:00