Debian
gimp package

gimp 2.8.14-1+deb8u2 source package in Debian

Changelog

gimp (2.8.14-1+deb8u2) jessie-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Out of bounds read / heap overflow in TGA importer (CVE-2017-17786)
    (Closes: #884862)
  * plug-ins: TGA 16-bit RGB (without alpha bit) is also valid
  * Heap buffer overflow in PSP importer (CVE-2017-17789) (Closes: #884837)
  * heap overread in gbr parser / load_image (CVE-2017-17784)
    (Closes: #884925)
  * heap overread in psp importer (CVE-2017-17787) (Closes: #884927)
  * Heap overflow while parsing FLI files (CVE-2017-17785) (Closes: #884836)
  * buffer overread in XCF parser if version field has no null terminator
    (CVE-2017-17788) (Closes: #885347)

 -- Salvatore Bonaccorso <email address hidden>  Tue, 26 Dec 2017 22:55:07 +0100

Upload details

Uploaded by:
Ari Pollak
Uploaded to:
Jessie
Original maintainer:
Ari Pollak
Architectures:
any all
Section:
graphics
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Jessie release main graphics

Builds

Downloads

File Size SHA-256 Checksum
gimp_2.8.14-1+deb8u2.dsc 3.2 KiB a564e0a0580b79645778a4b0695772caf4cac2b296c85126779eab0af768e1a1
gimp_2.8.14.orig.tar.bz2 19.5 MiB d82a958641c9c752d68e35f65840925c08e314cea90222ad845892a40e05b22d
gimp_2.8.14-1+deb8u2.debian.tar.xz 44.2 KiB beb807c2d71e485b9cc36e91aaa28d0c7b3d60ab853cdb5a3a1a8ca3967a5f7b

No changes file available.

Binary packages built by this source