|
|
Log in / Subscribe / Register

Debian-LTS alert DLA-525-1 (gimp)



From:
    	      Chris Lamb <lamby@debian.org> 


To:
    	      debian-lts-announce@lists.debian.org 


Subject:
    	      [SECURITY] [DLA 525-1] gimp security update 


Date:
    	      Sat, 25 Jun 2016 16:58:18 +0100


Message-ID:
    	      <1466870298.812079.648275145.00189BA0@webmail.messagingengine.com>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : gimp
Version        : 2.8.2-2+deb7u2
CVE ID         : CVE-2016-4994

It was discovered that there was a use-after-free vulnerability
in the channel and layer properties parsing process in Gimp, the
GNU Image Manipulation Program.

For Debian 7 "Wheezy", this issue has been fixed in gimp version
2.8.2-2+deb7u2.

We recommend that you upgrade your gimp packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Efnp
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds