Bugzilla – Bug 986021
VUL-0: CVE-2016-4994: gimp: Use-after-free vulnerabilities in the channel and layer properties parsing process
Last modified: 2018-05-08 00:51:30 UTC
Multiple use-after-free vulnerabilities were found in the channel and layer properties parsing process when loading XCF file. Attacker may craft XCF file in order to gain control over objects that got previously freed and contains pointers to virtual functions that get executed. Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=767873
bugbot adjusting priority
This is an autogenerated message for OBS integration: This bug (986021) was mentioned in https://build.opensuse.org/request/show/404204 13.2+42.1 / gimp
(In reply to Bernhard Wiedemann from comment #2) > This is an autogenerated message for OBS integration: > This bug (986021) was mentioned in > https://build.opensuse.org/request/show/404204 13.2+42.1 / gimp https://build.opensuse.org/request/show/404202 Factory sub
Looking through the code it appears only the xcf_load_channel_props piece of this fix logically applies on SLE11 and SLE10. I redid the patch for those distros and will submit for SLE12, SLE11 and SLE10...
(In reply to Scott Reeves from comment #4) > Looking through the code it appears only the xcf_load_channel_props piece of > this fix logically applies on SLE11 and SLE10. I redid the patch for those > distros and will submit for SLE12, SLE11 and SLE10... SLE12 - SR#117078 SLE11 - SR#117079 For SLE10 I get an error submitting but I actually don't know why mbranch returned an entry anyway, as it's out of maintenance as far as I know.
sle10 gimp submission is not required, no desktop product based on the sle10 line anymore. (sle11 has gimp on the SDK, which is still present)
openSUSE-SU-2016:1727-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 986021 CVE References: CVE-2016-4994 Sources used: openSUSE Leap 42.1 (src): gimp-2.8.16-4.1 openSUSE 13.2 (src): gimp-2.8.16-3.1
SUSE-SU-2016:1827-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 986021 CVE References: CVE-2016-4994 Sources used: SUSE Linux Enterprise Software Development Kit 11-SP4 (src): gimp-2.6.2-3.34.47.1 SUSE Linux Enterprise Debuginfo 11-SP4 (src): gimp-2.6.2-3.34.47.1
SUSE-SU-2016:1962-1: An update that fixes one vulnerability is now available. Category: security (moderate) Bug References: 986021 CVE References: CVE-2016-4994 Sources used: SUSE Linux Enterprise Workstation Extension 12-SP1 (src): gimp-2.8.10-7.8 SUSE Linux Enterprise Software Development Kit 12-SP1 (src): gimp-2.8.10-7.8 SUSE Linux Enterprise Desktop 12-SP1 (src): gimp-2.8.10-7.8
released
This is an autogenerated message for OBS integration: This bug (986021) was mentioned in https://build.opensuse.org/request/show/603017 Factory / gimp
This is an autogenerated message for OBS integration: This bug (986021) was mentioned in https://build.opensuse.org/request/show/605190 15.0 / gimp