Updated gimp package fixes security vulnerabilitiesPublication date: 06 Dec 2013
Affected Mageia releases : 3
CVE: CVE-2013-1913 , CVE-2013-1978
An integer overflow flaw and a heap-based buffer overflow were found in the way GIMP loaded certain X Window System (XWD) image dump files. A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP (CVE-2013-1913, CVE-2013-1978).