Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in gimp
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in gimp
ID: TLSA-2007-34
Distribution: TurboLinux
Plattformen: Turbolinux FUJI, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal
Datum: Fr, 13. Juli 2007, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2356
Applikationen: GIMP

Originalnachricht

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2007-34
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Original released date: 12 Jul 2007
Last revised: 12 Jul 2007

Package: gimp

Summary: Buffer overflow

More information:
GIMP is the GNU Image Manipulation Program.It is a freely distributed
program
for such tasks as photo retouching, image composition and image authoring.

A stack-based buffer overflow vulnerability exists in gimp.

Impact:
These vulnerabilities may allow remote attackers to execute arbitrary code.

Affected Products:
- Turbolinux FUJI
- Turbolinux Home
- Turbolinux 10 F...
- Turbolinux 10 Desktop
- Turbolinux Multimedia
- Turbolinux Personal


<Turbolinux FUJI>

Source Packages
Size: MD5

gimp-2.2.8-5.src.rpm
14184897 6c033210dee417a0cb50999a6470a7b9

Binary Packages
Size: MD5

gimp-2.2.8-5.i686.rpm
10295436 1380e2770373c1fafda8d9fa36fd8e0b
gimp-devel-2.2.8-5.i686.rpm
1072742 1e1753aa1efdc8c6e9a6e9388a585f4d

<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux
Multimedia, Turbolinux Personal>

Source Packages
Size: MD5

gimp-1.2.5-5.src.rpm
11061933 28797696887427fc76003198bc332916

Binary Packages
Size: MD5

gimp-1.2.5-5.i586.rpm
7662170 b0d9169b73930e8ec1d40c920adbb89c
gimp-devel-1.2.5-5.i586.rpm
299784 615f54420292a68192dcd422e89abb7f
gimp-perl-1.2.5-5.i586.rpm
161680 2859f706fd310d931f73a5a3e4559f61


References:

CVE
[CVE-2007-2356]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2356

--------------------------------------------------------------------------
Revision History
12 Jul 2007 Initial release
--------------------------------------------------------------------------

Copyright(C) 2007 Turbolinux, Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFGlfTMK0LzjOqIJMwRAlqNAJwJCNdb6Q2u8i4aVWG1MMZo4SgrTACgkd4/
Lb1AQY25MwTd1URm/TR333I=
=ri2O
-----END PGP SIGNATURE-----
Pro-Linux
Unterstützer werden
Neue Nachrichten
Werbung