Astra Linux – Vulnerability in Gegl

The loadcache function in GEGL before version 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This issue arises due to the use of the system library function for executing the ImageMagick convert fallback in magick-load. NOTE: GEGL versions...

[SECURITY] Fedora 42 Update: gimp-3.0.8-4.fc42

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

RHSA-2026:1574 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

RHEL 8 : gimp:2.8 (RHSA-2026:1574)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1574 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including...

MiracleLinux 7 : gimp-2.8.16-3.el7, gimp-help-2.8.2-1.el7 (AXSA:2016-1136:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-1136:01 advisory. gimp GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other...

Important: Red Hat Security Advisory: gimp:2.8 security update

An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this...

PT-2022-6743 · Gnome +9 · Gimp +9

Name of the Vulnerable Software and Affected Versions: GNOME GIMP version 2.10.30 Description: The issue is related to the gimp layer invalidate boundary function, which allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS. This can be exploit...

CVE-2022-30067

GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash...

CVE-2017-17788

In GIMP 2.8.22, there is a stack-based buffer over-read in xcfloadstream in app/xcf/xcf.c when there is no '\0' character after the version string...

PT-2012-1072 · Gnu +3 · Gimp +3

Name of the Vulnerable Software and Affected Versions: gimp-libs version 2.6.9 gimp-devel-tools version 2.6.9 gimp-help-browser version 2.6.9 gimp-devel version 2.6.9 gimp-debuginfo version 2.6.9 gimp version 2.6.9 gimp version 2.8.x and earlier Description: The issue concerns multiple...

DEBIAN-CVE-2011-1782

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

Linux news 26.06.00

Ядро 2.2.17pre6 Alan Cox анонсировал новую pre версию следующего стабильного ядра ветки 2.2. В ней исправлены некоторые ошибки и обновлен драйвер для контроллеров на AIC7xxx Подробнее: http://www.kernel.org Ядро 2.4.0test2-ac1 Вот и начат процесс по выпуску новых патчей для 2.4.0-test2 от Alana...