[ubuntu/hardy-security] gimp_2.4.5-1ubuntu2.1_ia64_translations.tar.gz, gimp_2.4.5-1ubuntu2.1_lpia_translations.tar.gz, gimp_2.4.5-1ubuntu2.1_hppa_translations.tar.gz, gimp_2.4.5-1ubuntu2.1_sparc_translations.tar.gz (delayed), gimp_2.4.5-1ubuntu2.1_amd64_translations.tar.gz, gimp_2.4.5-1ubuntu2.1_i386_translations.tar.gz, gimp_2.4.5-1ubuntu2.1_powerpc_translations.tar.gz, gimp 2.4.5-1ubuntu2.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Thu Jan 7 16:09:51 GMT 2010


gimp (2.4.5-1ubuntu2.1) hardy-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via crafted BMP file
    - debian/patches/04_security_CVE-2009-1570.patch: validate bit depths,
      width and height in plug-ins/bmp/bmpread.c.
    - CVE-2009-1570

Date: Mon, 04 Jan 2010 15:27:17 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/gimp/2.4.5-1ubuntu2.1
-------------- next part --------------
Format: 1.7
Date: Mon, 04 Jan 2010 15:27:17 -0500
Source: gimp
Binary: libgimp2.0 gimp-python gimp-gnomevfs gimp-libcurl gimp gimp-data libgimp2.0-dev libgimp2.0-doc gimp-dbg
Architecture: source
Version: 2.4.5-1ubuntu2.1
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 gimp       - The GNU Image Manipulation Program
 gimp-data  - Data files for GIMP
 gimp-dbg   - Debugging symbols for GIMP
 gimp-gnomevfs - GNOME-VFS URI plugin for GIMP
 gimp-libcurl - libcurl URI plugin for GIMP
 gimp-python - Python support and plugins for GIMP
 libgimp2.0 - Libraries for the GNU Image Manipulation Program
 libgimp2.0-dev - Headers and other files for compiling plugins for GIMP
 libgimp2.0-doc - Developers' Documentation for the GIMP library
Changes: 
 gimp (2.4.5-1ubuntu2.1) hardy-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via crafted BMP file
     - debian/patches/04_security_CVE-2009-1570.patch: validate bit depths,
       width and height in plug-ins/bmp/bmpread.c.
     - CVE-2009-1570
Files: 
 b9f0e7cd8df8c21dfa32dfdbcd5b04c0 1758 graphics optional gimp_2.4.5-1ubuntu2.1.dsc
 e3a0607d09505759d3527f9fa0136d05 45573 graphics optional gimp_2.4.5-1ubuntu2.1.diff.gz
Original-Maintainer: Ari Pollak <ari at debian.org>


More information about the Hardy-changes mailing list