Summary: | <media-gfx/gimp-2.6.11: multiple integer overflows (CVE-2011-1178) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | hanno |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2011-06-25 12:44:04 UTC
Looking into this, it seems that this is a rather old issue that has been fixed in 2009, just the public disclosure of the bug happened recently. The git commit you link is from 2009 and already applied on 2.6.11. So no need to act imho. Anyone disagrees? Agreed. I manually checked the 2.6.11 source and it contains the fix. I do not however see a GLSA for this; added to existing request. This issue was resolved and addressed in GLSA 201209-23 at http://security.gentoo.org/glsa/glsa-201209-23.xml by GLSA coordinator Sean Amoss (ackle). |