15 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-4994
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service program crash or...
RHEL 6 : gimp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gimp: Heap-based buffer overflow in readchanneldata function in plug-ins/common/file-psp.c CVE-2017-17789...
EulerOS 2.0 SP2 : gimp (EulerOS-SA-2019-2471)
According to the version of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service program...
EulerOS 2.0 SP3 : gimp (EulerOS-SA-2019-2021)
According to the versions of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple use-after-free vulnerabilities were found in GIMP in the channel and layer properties parsing process when loading XCF files.An attacker...
EulerOS 2.0 SP1 : gimp, gimp-help (EulerOS-SA-2016-1075)
According to the version of the gimp, gimp-help packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Multiple use-after-free vulnerabilities were found in GIMP in the channel and layer properties parsing process when loading XCF files.An...
Scientific Linux Security Update : gimp on SL7.x x86_64 (20161103)
The following packages have been upgraded to a newer upstream version: gimp 2.8.16, gimp-help 2.8.2. Security Fixes : - Multiple use-after-free vulnerabilities were found in GIMP in the channel and layer properties parsing process when loading XCF files. An attacker could create a specially craft...
CentOS 7 : gimp / gimp-help (CESA-2016:2589)
An update for gimp and gimp-help is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
SUSE SLED12 Security Update : gimp (SUSE-SU-2016:1962-1)
gimp was updated to fix one security issue. This security issue was fixed : - CVE-2016-4994: Use-after-free vulnerabilities in the channel and layer properties parsing process bsc986021. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE securi...
SUSE-SU-2016:1962-1 Security update for gimp
gimp was updated to fix one security issue. This security issue was fixed: - CVE-2016-4994: Use-after-free vulnerabilities in the channel and layer properties parsing process bsc986021...
SUSE-SU-2016:1827-1 Security update for gimp
gimp was updated to fix one security issue. This security issue was fixed: - CVE-2016-4994: Use-after-free vulnerabilities in the channel and layer properties parsing process bsc986021...
Fedora 23 : 2:gimp (2016-20db5e796b)
Security fix for CVE-2016-4994 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
CVE-2016-4994
CVE-2016-4994 is a Use‑after‑free vulnerability in GIMP’s XCF file loader (function xcf_load_image in app/xcf/xcf-load.c). An attacker could craft an XCF file to crash GIMP or potentially execute arbitrary code. Public discussions and advisories indicate multiple use‑after‑free bugs in the channe...
MGASA-2016-0241 Updated gimp packages fix security vulnerability
It was discovered that there was a use-after-free vulnerability in the channel and layer properties parsing process in GIMP CVE-2016-4994...
openSUSE Security Update : gimp (openSUSE-2016-822)
gimp was updated to version 2.8.16 to fix one security issue. This security issue was fixed : - CVE-2016-4994: Use-after-free vulnerabilities in the channel and layer properties parsing process bsc986021. This non-security issues were fixed : - Core : - Seek much less when writing XCF - Don't see...
CVE-2016-4994
Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service program crash or possibly execute arbitrary code via a crafted XCF file...