Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in GIMP
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in GIMP
ID: FEDORA-2011-10761
Distribution: Fedora
Plattformen: Fedora 16
Datum: Mo, 22. August 2011, 22:16
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2896
Applikationen: GIMP

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2011-10761
2011-08-12 20:34:01
-------------------------------------------------------------------------------
-

Name : gimp
Product : Fedora 16
Version : 2.6.11
Release : 21.fc16
URL : http://www.gimp.org/
Summary : GNU Image Manipulation Program
Description :
GIMP (GNU Image Manipulation Program) is a powerful image composition and
editing program, which can be extremely useful for creating logos and other
graphics for webpages. GIMP has many of the tools and filters you would expect
to find in similar commercial offerings, and some interesting extras as well.
GIMP provides a large image manipulation toolbox, including channel operations
and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all
with multi-level undo.

-------------------------------------------------------------------------------
-
Update Information:

This update adds checks to avoid heap corruption and buffer overflows when
loading GIF image files (CVE-2011-2896). Additionally, it fixes a bug which caused GIMP to print an unnecessary warning to the command line on startup.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #727800 - CVE-2011-2896 David Koblas' GIF decoder LZW decoder
buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=727800
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update gimp' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung