edubuntu-bugs team mailing list archive

Thread
Date

[Bug 1690544] [NEW] include proper fix for CVE-2007-3126, released in GIMP 2.8.22

To: edubuntu-bugs@xxxxxxxxxxxxxxxxxxx
From: nmaxx <a33ypool3kbhd@xxxxxxxxxxx>
Date: Sat, 13 May 2017 13:53:37 -0000
Reply-to: Bug 1690544 <1690544@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

The GIMP developers announced at https://www.gimp.org/news/2017/05/11/gimp-2-8-22-released/ that version 2.8.22 finally includes a proper fix for the ancient ICO file import crash CVE-2007-3126.
The fix should thus either be back-ported or GIMP bumped to 2.8.22 for supported Ubuntu versions.

** Affects: gimp (Ubuntu)
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Edubuntu
Bugsquad, which is subscribed to gimp in Ubuntu.
https://bugs.launchpad.net/bugs/1690544

Title:
  include proper fix for CVE-2007-3126, released in GIMP 2.8.22

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gimp/+bug/1690544/+subscriptions

Follow ups

[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Launchpad Bug Tracker, 2018-03-29
[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Jeremy Bicha, 2018-03-28
[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Michael Schumacher, 2017-05-13
[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Bug Watch Updater, 2017-05-13
[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Michael Schumacher, 2017-05-13
[Bug 1690544] Re: include proper fix for CVE-2007-3126, released in GIMP 2.8.22
From: Hans Joachim Desserud, 2017-05-13