stable
gimp-2.8.22-3.fc26
FEDORA-2018-ccef1ced42 created by jridky 4 years ago for Fedora 26

Security fix for CVE-2017-17784 CVE-2017-17785 CVE-2017-17786 CVE-2017-17787 CVE-2017-17788 CVE-2017-17789

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2018-ccef1ced42

This update has been submitted for testing by jridky.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon williamjmorenor provided feedback 4 years ago
karma
User Icon samoht0 commented & provided feedback 4 years ago
karma

LGTM

User Icon filiperosset commented & provided feedback 4 years ago
karma

no regressions noted

User Icon hreindl commented & provided feedback 4 years ago
karma

works for me

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago
User Icon pingou commented 4 years ago

This update is currently gated because it is missing test results, you may want to unpush and repush it to retrigger the rpmdeplint test. This will reset the karma for the update so if you do not want this we're working on adjusting our tooling to cover updates such as this one where some test results are missing.

Some more of the details are available at: https://pagure.io/fesco/issue/1810#comment-490382

User Icon zdohnal commented & provided feedback 4 years ago
karma

LGTM

This update has been submitted for batched by bodhi.

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
5
Signed
Content Type
RPM
Test Gating
Builds
1
gimp-2.8.22-3.fc26
Settings
Unstable by Karma
-3
Stable by Karma
5
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1529141 CVE-2017-17788 gimp: Stack-based buffer over-read in xcf_load_stream function in app/xcf/xcf.c
0
0
BZ#1529143 CVE-2017-17787 gimp: Heap-based buffer over-read in read_creator_block function in plug-ins/common/file-psp.c
0
0
BZ#1529144 CVE-2017-17784 gimp: Heap-based buffer over-read in load_image function in plug-ins/common/file-gbr.c
0
0
BZ#1529145 CVE-2017-17786 gimp: Heap-based buffer over-read in ReadImage function in plug-ins/common/file-tga.c
0
0
BZ#1529146 CVE-2017-17789 gimp: Heap-based buffer overflow in read_channel_data function in plug-ins/common/file-psp.c
0
0
BZ#1529147 CVE-2017-17785 gimp: Heap-based buffer overflow in the fli_read_brun function in plug-ins/file-fli/fli.c
0
0
BZ#1529149 CVE-2017-17784 CVE-2017-17785 CVE-2017-17786 CVE-2017-17787 CVE-2017-17788 CVE-2017-17789 gimp: various flaws [fedora-all]
0
0

Automated Test Results

Copyright © 2007-2022 Red Hat, Inc. and others.

Running bodhi-server 6.0.1 on bodhi-web-17-74wss.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy