Debian: CVE-2017-17788: gimp -- security update
|7||(AV:N/AC:M/Au:N/C:P/I:P/A:P)||December 20, 2017||December 31, 2017||January 17, 2018|
In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character after the version string.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!