gimp: security update
This update fixes various overflows:
+ CVE-2011-1178: CVSS v2 Base Score: 6.8
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
+ CVE-2011-1782: CVSS v2 Base Score: 6.8
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4637
Fixed bugs
bnc#692877
VUL-0: gimp: heap overflow in PCX plugin
CVE#CVE-2011-1178
Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a c
CVE#CVE-2011-1782
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (ak
