File _patchinfo of Package patchinfo.8594

<patchinfo incident="8594">
  <issue tracker="bnc" id="1073629">VUL-1: CVE-2017-17788: gimp: OOB read in XCF</issue>
  <issue tracker="bnc" id="1073625">VUL-1: CVE-2017-17785: gimp: Heap overflow in FLI import</issue>
  <issue tracker="bnc" id="1073626">VUL-1: CVE-2017-17786: gimp: OOB read in TGA</issue>
  <issue tracker="bnc" id="1161998">gimp: /usr/lib64/gimp/2.0/plug-ins/file-ps: fatal error: Segmentation fault ref:_00D1igLOd._5001iKIYJ5:ref</issue>
  <issue tracker="cve" id="2017-17785"/>
  <issue tracker="cve" id="2017-17786"/>
  <issue tracker="cve" id="2017-17788"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>qzhao</packager>
  <description>This update for gimp fixes the following issues:

- Fix for crashing due to segmentation fault caused by importing ghostscript files. (bsc#1161998)

Security issues fixed:

- CVE-2017-17785: Fixed an heap-based buffer overflow in FLI import (bsc#1073625)
- CVE-2017-17786: Fixed an out-of-bounds read in TGA (bsc#1073626)
- CVE-2017-17788: Fixed an out-of-bounds read in XCF (bsc#1073629)
</description>
  <summary>Security update for gimp</summary>
</patchinfo>
Places

File _patchinfo of Package patchinfo.8594

Places
