Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Fedora Security Update Fixes Gimp XCF File Handling Buffer Overflow Vulnerability

Title : Fedora Security Update Fixes Gimp XCF File Handling Buffer Overflow Vulnerability
VUPEN ID : VUPEN/ADV-2006-2770
CVE ID : CVE-2006-3404
Rated as : Moderate Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-07-12

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format 

Fedora has released updated packages to address a vulnerability identified in Gimp. This flaw could be exploited by attackers to execute arbitrary commands. For additional information, see : VUPEN/ADV-2006-2703

Affected Products

Fedora Core 5
Fedora Core 4

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

e8aeeea140f1eb78d55f8004d0faba3f4f6d70f3 SRPMS/gimp-2.2.12-1.fc5.src.rpm
e8aeeea140f1eb78d55f8004d0faba3f4f6d70f3 noarch/gimp-2.2.12-1.fc5.src.rpm
a1bfb3a73c23c5143d3d4e3648836234fb6ebd20 ppc/gimp-2.2.12-1.fc5.ppc.rpm
9965089e0e3675c2068b5deafada00c0d9e4628b ppc/debug/gimp-debuginfo-2.2.12-1.fc5.ppc.rpm
5879fa9cc6f3aa4d30b4cb11e8c462cea8ce6ed8 ppc/gimp-devel-2.2.12-1.fc5.ppc.rpm
5fdc3a12d7d48ede4c813d2b3823ba2062fe9968 x86_64/debug/gimp-debuginfo-2.2.12-1.fc5.x86_64.rpm
ac6333552383cc668bc438d49fd5ef54bee417c1 x86_64/gimp-2.2.12-1.fc5.x86_64.rpm
4d3075a110c2fe3f2e85de9aa7c72883efd8e962 x86_64/gimp-devel-2.2.12-1.fc5.x86_64.rpm
34e9bb6dab9f179ab72c3dee038012aef0d10bd4 i386/gimp-devel-2.2.12-1.fc5.i386.rpm
341a74e5982ecab254477c2d68013a034971f86d i386/gimp-2.2.12-1.fc5.i386.rpm
08a22e64d4d7e3c7fa4c7bb24c24bb2b0c23dd28 i386/debug/gimp-debuginfo-2.2.12-1.fc5.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

f58cb03d9e09a44b9d3dcc750b3f8b8087cc8519 SRPMS/gimp-2.2.12-1.fc4.src.rpm
f58cb03d9e09a44b9d3dcc750b3f8b8087cc8519 noarch/gimp-2.2.12-1.fc4.src.rpm
1a7d28b9a792926d00dd01839765860ea4932c2d ppc/gimp-2.2.12-1.fc4.ppc.rpm
53a51d7f688cec602e502eb7b79e556e057b70b9 ppc/gimp-devel-2.2.12-1.fc4.ppc.rpm
b71912d3a71f314e062539dddee03fa0e0193532 ppc/debug/gimp-debuginfo-2.2.12-1.fc4.ppc.rpm
7fd1d0d710b3648a5b8db72f51ba5eb2b3989f8b x86_64/gimp-2.2.12-1.fc4.x86_64.rpm
9acb292c3bd6d84a805e7e45983bc63ba02e1c81 x86_64/gimp-devel-2.2.12-1.fc4.x86_64.rpm
6d7ada28a4f5432ffddf109067793fb4adf726f2 x86_64/debug/gimp-debuginfo-2.2.12-1.fc4.x86_64.rpm
7232f3990c4270eb4d01cc6c3064bccb36aea4ee i386/gimp-2.2.12-1.fc4.i386.rpm
938d5e0b91905a7ccdd18999e5fd07701868c0ba i386/gimp-devel-2.2.12-1.fc4.i386.rpm
fe575d6a2fca242afd3685f14c085a7a2e9153f9 i386/debug/gimp-debuginfo-2.2.12-1.fc4.i386.rpm

References

http://www.vupen.com/english/advisories/2006/2770
https://www.redhat.com/archives/fedora-package-announce/2006-July/msg00042.html
https://www.redhat.com/archives/fedora-package-announce/2006-July/msg00041.html

ChangeLog

2006-07-12 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-07-06

     

  Microsoft Windows 0-Day
  Flaw Exploited in the Wild


  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy