[ubuntu/jaunty-security] gimp_2.6.6-0ubuntu1.1_hppa_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_ia64_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_i386_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_amd64_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_sparc_translations.tar.gz (delayed), gimp_2.6.6-0ubuntu1.1_armel_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_powerpc_translations.tar.gz, gimp_2.6.6-0ubuntu1.1_lpia_translations.tar.gz, gimp 2.6.6-0ubuntu1.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Jan 7 16:06:35 GMT 2010
gimp (2.6.6-0ubuntu1.1) jaunty-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted BMP file
- debian/patches/04_security_CVE-2009-1570.patch: validate bit depths,
width and height in plug-ins/file-bmp/bmp-read.c.
- CVE-2009-1570
* SECURITY UPDATE: arbitrary code execution via crafted PSD file
- debian/patches/05_security_CVE-2009-3909.patch: protect against
integer overflows in plug-ins/file-psd/{psd.h,psd-load.c}.
- CVE-2009-3909
Date: Mon, 04 Jan 2010 14:10:06 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/gimp/2.6.6-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Mon, 04 Jan 2010 14:10:06 -0500
Source: gimp
Binary: libgimp2.0 gimp gimp-data libgimp2.0-dev libgimp2.0-doc gimp-dbg
Architecture: source
Version: 2.6.6-0ubuntu1.1
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
gimp - The GNU Image Manipulation Program
gimp-data - Data files for GIMP
gimp-dbg - Debugging symbols for GIMP
libgimp2.0 - Libraries for the GNU Image Manipulation Program
libgimp2.0-dev - Headers and other files for compiling plugins for GIMP
libgimp2.0-doc - Developers' Documentation for the GIMP library
Changes:
gimp (2.6.6-0ubuntu1.1) jaunty-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via crafted BMP file
- debian/patches/04_security_CVE-2009-1570.patch: validate bit depths,
width and height in plug-ins/file-bmp/bmp-read.c.
- CVE-2009-1570
* SECURITY UPDATE: arbitrary code execution via crafted PSD file
- debian/patches/05_security_CVE-2009-3909.patch: protect against
integer overflows in plug-ins/file-psd/{psd.h,psd-load.c}.
- CVE-2009-3909
Checksums-Sha1:
0650a66bfb210385d5f45aa64f9c666008166199 1953 gimp_2.6.6-0ubuntu1.1.dsc
78bac4fed46ae066eac1a45483d3d01daddda545 45816 gimp_2.6.6-0ubuntu1.1.diff.gz
Checksums-Sha256:
923e76763a0527d938dc7bd56aa921121fe2fe45cfa4b45a07f958d56c8a8b69 1953 gimp_2.6.6-0ubuntu1.1.dsc
636a5539a2c74be20461085429f931450a701142f04d2e1390ca4133c050961a 45816 gimp_2.6.6-0ubuntu1.1.diff.gz
Files:
4bed1eddad6d82b32ea6a11883235cc4 1953 graphics optional gimp_2.6.6-0ubuntu1.1.dsc
08db67b2bb57da5191440fc485545505 45816 graphics optional gimp_2.6.6-0ubuntu1.1.diff.gz
Original-Maintainer: Ari Pollak <ari at debian.org>
More information about the Jaunty-changes
mailing list