Package gimp updated to version 2.10.32-alt1 for branch sisyphus_riscv64.

Published: 2022-05-17
Modified: 2024-11-21

CVE-2022-30067

GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

https://gitlab.gnome.org/GNOME/gimp/-/issues/8120
https://gitlab.gnome.org/GNOME/gimp/-/issues/8120
[debian-lts-announce] 20231121 [SECURITY] [DLA 3659-1] gimp security update
[debian-lts-announce] 20231121 [SECURITY] [DLA 3659-1] gimp security update

Published: 2022-06-24
Modified: 2024-11-21

CVE-2022-32990

An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service (DoS).

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

https://gitlab.gnome.org/GNOME/gimp/-/issues/8230
https://gitlab.gnome.org/GNOME/gimp/-/issues/8230

Version: 2.1.0

Package gimp update in sisyphus_riscv64 on 2022-06-15

ALT-PU-2022-5214-1

Closed vulnerabilities

CVE-2022-30067

CVE-2022-32990