LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

SUSE alert SUSE-SU-2012:1027-1 (gimp)



From:
    	      opensuse-security@opensuse.org 


To:
    	      opensuse-security-announce@opensuse.org 


Subject:
    	      [security-announce] SUSE-SU-2012:1027-1: important: Security update for gimp 


Date:
    	      Thu, 23 Aug 2012 16:08:24 +0200 (CEST)


Message-ID:
    	      <20120823140824.661363223E@maintenance.suse.de>


Archive-link:
    	      Article, Thread
              


   SUSE Security Update: Security update for gimp
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:1027-1
Rating:             important
References:         #775429 
Cross-References:   CVE-2012-3403
Affected Products:
                    SUSE Linux Enterprise Desktop 10 SP4
                    SLE SDK 10 SP4
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:


   This update of The Gimp fixes a heap overflow that could
   have been  exploited by attackers to cause a Denial of
   Service (application crash) or  even to potentially execute
   arbitrary code (CVE-2012-3402).

   Security Issue reference:

   * CVE-2012-3403
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3403
   >



Package List:

   - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):

      gimp-2.2.10-22.44.1
      gimp-devel-2.2.10-22.44.1

   - SLE SDK 10 SP4 (i586 ia64 ppc s390x x86_64):

      gimp-2.2.10-22.44.1
      gimp-devel-2.2.10-22.44.1


References:

   http://support.novell.com/security/cve/CVE-2012-3403.html
   https://bugzilla.novell.com/775429
   http://download.novell.com/patch/finder/?keywords=5d18ef4...

-- 
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds