gimp 2.10.30-1ubuntu0.1 source package in Ubuntu
Changelog
gimp (2.10.30-1ubuntu0.1) jammy-security; urgency=medium
[ Luís Infante da Câmara ]
* SECURITY UPDATE: Buffer overflow leading to insufficient memory or
program crash via a crafted XCF file (LP: #1982422)
- debian/patches/CVE-2022-30067.patch: Stop loading paths and skip to
the next property when xcf_old_path fails.
- CVE-2022-30067
* SECURITY UPDATE: Denial of service via a crafted XCF file
(LP: #1982422)
- debian/patches/CVE-2022-32990-1.patch: Check maximum dimensions when
loading XCF files.
- debian/patches/CVE-2022-32990-2.patch: Check for invalid offsets when
loading XCF files.
- debian/patches/CVE-2022-32990-3.patch: Return TRUE in
gimp_channel_is_empty when channel is NULL.
- CVE-2022-32990
[ Marc Deslauriers ]
* SECURITY UPDATE: DDS File Parsing Heap-based Buffer Overflow
- debian/patches/CVE-2023-44441-1.patch: verify header information in
plug-ins/file-dds/ddsread.c.
- debian/patches/CVE-2023-44441-2.patch: fix checks in
plug-ins/file-dds/ddsread.c.
- debian/patches/CVE-2023-44441-3.patch: add additional fixes in
plug-ins/file-dds/ddsread.c.
- CVE-2023-44441
* SECURITY UPDATE: PSD File Parsing Heap-based Buffer Overflow
- debian/patches/CVE-2023-44442.patch: add missing break statement in
plug-ins/file-psd/psd-util.c.
- CVE-2023-44442
* SECURITY UPDATE: PSP File Parsing Integer Overflow and Off-By-One
- debian/patches/CVE-2023-44443_44444.patch: check
color_palette_entries and fix buffer size in
plug-ins/common/file-psp.c.
- CVE-2023-44443
- CVE-2023-44444
-- Marc Deslauriers <email address hidden> Tue, 28 Nov 2023 07:38:10 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- graphics
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Jammy | updates | universe | graphics | |
| Jammy | security | universe | graphics |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| gimp_2.10.30.orig.tar.bz2 | 30.3 MiB | 88815daa76ed7d4277eeb353358bafa116cd2fcd2c861d95b95135c1d52b67dc |
| gimp_2.10.30-1ubuntu0.1.debian.tar.xz | 62.2 KiB | 1d656819519f73d7460b4f1f9e225a48c46743bf1d1b626100d59f6a7f8bca6a |
| gimp_2.10.30-1ubuntu0.1.dsc | 3.5 KiB | dd036c3f1b100d078bfb59fbb737e6a0b0de9ff06413ca7fe4b1009e90ee1311 |
Available diffs
Binary packages built by this source
- gimp: GNU Image Manipulation Program
GIMP is an advanced picture editor. You can use it to edit, enhance, and
retouch photos and scans, create drawings, and make your own images.
It has a large collection of professional-level editing tools and
filters, similar to the ones you might find in Photoshop. Numerous
fine-control settings and features like layers, paths, masks, and
scripting give you total control over your images.
.
Many image file formats are supported, including JPEG, Photoshop (.psd),
and Paint Shop Pro (.psp) files. It can also be used to scan and print
photos.
.
To open files remotely (like over HTTP), install the gvfs-backends
package.
.
To use a MIDI device (like a musical keyboard) as an input controller in GIMP,
install libasound2 and read the how-to at /usr/share/doc/gimp/ README. MIDI
- gimp-data: Data files for GIMP
This package contains architecture-
independent supporting data files
for use with GIMP.
- gimp-dbgsym: debug symbols for gimp
- libgimp2.0: Libraries for the GNU Image Manipulation Program
This package includes the libgimp libraries, which are
necessary to run GIMP and third-party GIMP plugins.
- libgimp2.0-dbgsym: debug symbols for libgimp2.0
- libgimp2.0-dev: Headers and other files for compiling plugins for GIMP
This package contains the header files for the GNU Image Manipulation
Program, along with the static versions of libgimp.
It also includes the gimptool-2.0 utility.
.
Install this package if you wish to compile your own plugins,
or if you wish to develop packages that use libgimp.
- libgimp2.0-dev-dbgsym: debug symbols for libgimp2.0-dev
- libgimp2.0-doc: Developers' Documentation for the GIMP library
This package contains the HTML documentation for the GIMP library in
/usr/share/gtk-doc/ html/ .
