[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

GIMP: Fix CVE-2016-4994

From: Leo Famulari
Subject: GIMP: Fix CVE-2016-4994
Date: Fri, 1 Jul 2016 16:19:42 -0400
User-agent: Mutt/1.6.0 (2016-04-01)

GIMP has a use-after-free bug related to XCF file parsing that allows
arbitrary code execution:

This patch cherry-picks the upstream commit from the gimp-2-8 branch:

Leo Famulari (1):
  gnu: gimp: Fix CVE-2016-4994.

 gnu/                                  |  1 + 
 gnu/packages/gimp.scm                         |  1 + 
 gnu/packages/patches/gimp-CVE-2016-4994.patch | 96 +++++++++++++++++++++++++++
 3 files changed, 98 insertions(+)
 create mode 100644 gnu/packages/patches/gimp-CVE-2016-4994.patch

Attachment: 0001-gnu-gimp-Fix-CVE-2016-4994.patch
Description: Text Data

reply via email to

[Prev in Thread] Current Thread [Next in Thread]