[slackware-security] gimp

ID SSA-2006-207-03
Type slackware
Reporter Slackware Linux Project
Modified 2006-07-26T21:25:29


New gimp packages are available for Slackware 10.2 and -current to fix a possible security issue.

More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:


Here are the details from the Slackware 10.2 ChangeLog:

patches/packages/gimp-2.2.12-i486-1.tgz: Upgraded to gimp-2.2.12. This release fixes a security hole in the XCF parser. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3404 ( Security fix )

Where to find the new packages:

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating additional FTP and rsync hosting to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

Updated package for Slackware 10.2: ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/gimp-2.2.12-i486-1_slack10.2.tgz

Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/gimp-2.2.12-i486-1.tgz

MD5 signatures:

Slackware 10.2 package: e9d7e6e4dd16714e6a6c728821f2cc38 gimp-2.2.12-i486-1_slack10.2.tgz

Slackware -current package: c673c5e501392bdfc2c938b880e0860b gimp-2.2.12-i486-1.tgz

Installation instructions:

Upgrade the packages as root: > upgradepkg gimp-2.2.12-i486-1_slack10.2.tgz