Security update for gimp
This update for gimp fixes the following issues:
- CVE-2017-17784: Fixed an insufficient string validation for input names (bsc#1073624).
- CVE-2017-17785: Fixed an heap-based buffer overflow in FLI import (bsc#1073625).
- CVE-2017-17786: Fixed an out-of-bounds read in TGA (bsc#1073626).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Jia Zhaocong (zcjia)
Fixed bugs
bnc#1073626
VUL-1: CVE-2017-17786: gimp: OOB read in TGA
bnc#1073624
VUL-1: CVE-2017-17784: gimp: OOB read in GBR
bnc#1073625
VUL-1: CVE-2017-17785: gimp: Heap overflow in FLI import
