11 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-12713
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the...
RHEL 8 : gimp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gimp: predictable temporary file name in test-xcf.c unit test CVE-2018-12713 Note that Nessus has not tested for th...
RHEL 7 : gimp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gimp: predictable temporary file name in test-xcf.c unit test CVE-2018-12713 - GIMP 2.10.30 and 2.99.10 a...
Huawei EulerOS: Security Advisory for gimp (EulerOS-SA-2019-1675)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gimp (EulerOS-SA-2019-1761)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : gimp (EulerOS-SA-2019-2021)
According to the versions of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple use-after-free vulnerabilities were found in GIMP in the channel and layer properties parsing process when loading XCF files.An attacker...
EulerOS 2.0 SP8 : gimp (EulerOS-SA-2019-1761)
According to the version of the gimp package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by th...
EulerOS 2.0 SP2 : gimp (EulerOS-SA-2019-1741)
According to the version of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by t...
EulerOS 2.0 SP5 : gimp (EulerOS-SA-2019-1675)
According to the version of the gimp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by t...
CVE-2018-12713
GIMP (up to version 2.10.2) is affected by CVE-2018-12713. The issue arises from g_get_tmp_dir usage to create temporary filenames, which may generate a name that already exists, enabling an attacker to overwrite files or read private content as demonstrated by test-xcf.c. The connected documents...
CVE-2018-12713
GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimpwriteandreadfile function in app/tests/test-xcf.c. This might be leveraged by attackers to overwrite files or read file content that was...