Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:28852
HistoryDec 11, 2012 - 12:00 a.m.

[USN-1659-1] GIMP vulnerability

2012-12-1100:00:00
vulners.com
23
JSON

==========================================================================
Ubuntu Security Notice USN-1659-1
December 10, 2012

gimp vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 12.10
  • Ubuntu 12.04 LTS
  • Ubuntu 11.10
  • Ubuntu 10.04 LTS

Summary:

GIMP could be made to crash or run programs as your login if it opened a
specially crafted file.

Software Description:

  • gimp: The GNU Image Manipulation Program

Details:

It was discovered that GIMP incorrectly handled malformed XWD files. If a
user were tricked into opening a specially crafted XWD file, an attacker
could cause GIMP to crash, or possibly execute arbitrary code with the
user's privileges.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.10:
gimp 2.8.2-1ubuntu1.1

Ubuntu 12.04 LTS:
gimp 2.6.12-1ubuntu1.2

Ubuntu 11.10:
gimp 2.6.11-2ubuntu4.2

Ubuntu 10.04 LTS:
gimp 2.6.8-2ubuntu1.6

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1659-1
CVE-2012-5576

Package Information:
https://launchpad.net/ubuntu/+source/gimp/2.8.2-1ubuntu1.1
https://launchpad.net/ubuntu/+source/gimp/2.6.12-1ubuntu1.2
https://launchpad.net/ubuntu/+source/gimp/2.6.11-2ubuntu4.2
https://launchpad.net/ubuntu/+source/gimp/2.6.8-2ubuntu1.6

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related

cve 1
ubuntu 1
checkpoint_advisories 2
securityvulns 1
prion 1
openvas 14
kaspersky 1
nessus 11
ubuntucve 1
veracode 3
debiancve 1
centos 1
oraclelinux 1
osv 1
redhat 1
fedora 1
gentoo 1
debian 1
cve
cve
CVE-2012-5576
2012-12-18 01:55:00
ubuntu
ubuntu
GIMP vulnerability
2012-12-10 00:00:00
checkpoint_advisories
checkpoint_advisories
GIMP XWD File Handling Stack Buffer Overflow (CVE-2012-5576)
2013-01-13 00:00:00
GIMP XWD File Handling Stack Buffer Overflow - Ver2 (CVE-2012-5576)
2014-04-16 00:00:00
securityvulns
securityvulns
GNU GIMP memory corruption
2012-12-11 00:00:00
prion
prion
Stack overflow
2012-12-18 01:55:00
openvas
openvas
Ubuntu: Security Advisory (USN-1659-1)
2012-12-11 00:00:00
Ubuntu Update for gimp USN-1659-1
2012-12-11 00:00:00
Fedora Update for gimp FEDORA-2013-2000
2013-02-22 00:00:00
kaspersky
kaspersky
KLA10168 DoS vulnerability in GIMP
2012-12-17 00:00:00
nessus
nessus
openSUSE Security Update : gimp (openSUSE-SU-2012:1623-1)
2014-06-13 00:00:00
Fedora 17 : gimp-2.8.4-1.fc17 (2013-2000)
2013-02-21 00:00:00
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : gimp vulnerability (USN-1659-1)
2012-12-11 00:00:00
ubuntucve
ubuntucve
CVE-2012-5576
2012-11-27 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:52:20
Arbitrary Code Execution
2019-05-02 04:59:20
Integer Overflow
2019-05-02 04:59:20
debiancve
debiancve
CVE-2012-5576
2012-12-18 01:55:00
centos
centos
gimp security update
2013-12-03 22:52:31
oraclelinux
oraclelinux
gimp security update
2013-12-03 00:00:00
osv
osv
gimp - several
2013-12-09 00:00:00
redhat
redhat
(RHSA-2013:1778) Moderate: gimp security update
2013-12-03 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: gimp-2.8.4-1.fc17
2013-02-21 05:37:27
gentoo
gentoo
GIMP: Multiple vulnerabilities
2013-11-10 00:00:00
debian
debian
[SECURITY] [DSA 2813-1] gimp security update
2013-12-09 17:11:44
JSON
Related for SECURITYVULNS:DOC:28852
cve1ubuntu1checkpoint_advisories2securityvulns1prion1openvas14kaspersky1nessus11ubuntucve1veracode3debiancve1centos1oraclelinux1osv1redhat1fedora1gentoo1debian1