lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20060710143142.GF5030@piware.de>
Date: Mon, 10 Jul 2006 16:31:42 +0200
From: Martin Pitt <martin.pitt@...onical.com>
To: ubuntu-security-announce@...ts.ubuntu.com
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com
Subject: [USN-312-1] gimp vulnerability

=========================================================== 
Ubuntu Security Notice USN-312-1              July 10, 2006
gimp vulnerability
CVE-2006-3404
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 5.04:
  gimp                           2.2.2-1ubuntu5.1
  libgimp2.0                     2.2.2-1ubuntu5.1

Ubuntu 5.10:
  gimp                           2.2.8-2ubuntu6.1
  libgimp2.0                     2.2.8-2ubuntu6.1

Ubuntu 6.06 LTS:
  gimp                           2.2.11-1ubuntu3.1
  libgimp2.0                     2.2.11-1ubuntu3.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

Henning Makholm discovered that gimp did not sufficiently validate the
'num_axes' parameter in XCF files. By tricking a user into opening a
specially crafted XCF file with Gimp, an attacker could exploit this
to execute arbitrary code with the user's privileges.


Updated packages for Ubuntu 5.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2-1ubuntu5.1.diff.gz
      Size/MD5:    25366 1c89e7a4876c8922baf9c3be9cce72b9
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2-1ubuntu5.1.dsc
      Size/MD5:     1053 41cbd27c48207a245d8486d37c3bea44
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2.orig.tar.gz
      Size/MD5: 20151209 eccbe0b2438be095222a6723e57c51a3

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-data_2.2.2-1ubuntu5.1_all.deb
      Size/MD5:  2057404 4d2655688e65317c1cce1f7938c415b3
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp1.2_2.2.2-1ubuntu5.1_all.deb
      Size/MD5:    23028 c55d030036cc817eba07f15a31cd2ab9
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-doc_2.2.2-1ubuntu5.1_all.deb
      Size/MD5:   516766 2bddbe64aae9009428e16f40ff0ac92c

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:    34686 1491899331d67c323414df5625b378ad
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:   114452 c0d1e1ea2cb6ec1ed06b6327a91e5da6
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:    34686 c3726bb2cf00dc202439253ab8e5f47f
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:  3138104 4cbd06980a263a956eaf2ed8a61fae14
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:    90072 e876c374828beb7951d8d1bb6323ef00
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.2-1ubuntu5.1_amd64.deb
      Size/MD5:   434012 4ef7e7e58e45d192a8877747c432efdf

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:    33386 e3249682facaedc43430c2a02f55be4f
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:   108648 883b24c54ef4fec71777d601eca58b64
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:    33806 ff701d78ebb13b876ea4651a00e06dce
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:  2822064 333aba3cca28c59606ef01e688a98fdc
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:    90074 13fa37935cb5334bd13406119f326bee
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.2-1ubuntu5.1_i386.deb
      Size/MD5:   404102 a9812964cf7257f5ae9609a95efb6a0f

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:    34918 d46155c0c3ec7e265972c27156255595
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:   110434 d0c4290c8a30db183db627df47b901ce
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:    35606 c8f11092c804ba676de10fb0ee0206e5
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:  3208564 ee4badf2b0ccaebd84dabeb123f5e98a
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:    90100 073cc2a24d7be2923c1a1750661bbc9e
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.2-1ubuntu5.1_powerpc.deb
      Size/MD5:   428626 65b3e8b890dbcf005442c935a061169d

Updated packages for Ubuntu 5.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1.diff.gz
      Size/MD5:    30972 004d46b2721db233a1037378a76ad219
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1.dsc
      Size/MD5:     1084 e1f078639ad1201614e0c830fad88f61
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8.orig.tar.gz
      Size/MD5: 20529098 4d543228967a8d33a8276339c40ffe64

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-data_2.2.8-2ubuntu6.1_all.deb
      Size/MD5:  2079192 d100e3e9b066e18a9fc1358237eecc90
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp1.2_2.2.8-2ubuntu6.1_all.deb
      Size/MD5:    34806 ffd1badac2770f6f7fd2af0382a8d4f0
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-doc_2.2.8-2ubuntu6.1_all.deb
      Size/MD5:   519014 5557d213c447c8719475b63b4f275570

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:    46334 cf5aa30f0a710e0a2a5d3b5d1f31de82
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:   126774 57b5c7fb31d5fd4c7a893a46aa9f59c8
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:    46420 f8540a7d00dc18d5d014c9c5d571a280
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:  3178830 1d4a121e227396c6c67558dd62c3e66e
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:   101984 04238d839cba2fb1f62e12178f27f06f
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.8-2ubuntu6.1_amd64.deb
      Size/MD5:   446672 49cc4af975ae1820ac27431f0dfc382b

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:    45178 32211947773168a74e8a32a96f1d7977
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:   119216 9c8ea7d961f3008894ae311c88c51a4a
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:    45512 181b1d11a870434b6143a05f817abba3
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:  2805454 3751247190e54a478dd3e4bd09ec1d01
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:   101976 01cf59d7bd98979b7f4731a156454c8d
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.8-2ubuntu6.1_i386.deb
      Size/MD5:   403820 e1d8643a2f489f570ec4cbff690de43e

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:    46774 283d55a3942da3e25f91222292256260
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:   122710 d73fc3e1820c125e18af9bc5f546c489
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:    47426 9640175231edeb56cefbcd1b2b64942c
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:  3263286 21ee97ed61ca4cf5814c4c16bfa25390
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:   102008 6155784e2c64ec20a2e2dedb207b835b
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.8-2ubuntu6.1_powerpc.deb
      Size/MD5:   438484 9ecff496283a2ce8eb1c80ecfe462e39

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:    45234 69d43426f6ad3b9df471a8f6cf17ce7a
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:   120352 1ef0f1997cd115e06c0e70afdc7ae3ec
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:    45708 c8b2309d4456cec39618f02e203ff701
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:  2876458 7bc16fd12c4388293176983a874785f4
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:   101994 a0875688cfcdc478b88a8bd0488435f8
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.8-2ubuntu6.1_sparc.deb
      Size/MD5:   422928 e0ba6fd3923075ee5856dd7bbcb47b01

Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1.diff.gz
      Size/MD5:    33861 004dcc1835345fc1d474f6fa2dbf15ab
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1.dsc
      Size/MD5:     1266 d353df1f507926d72eedaba11c564932
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11.orig.tar.gz
      Size/MD5: 18549092 c4312189e3a7f869a26874854dc6a1d7

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-data_2.2.11-1ubuntu3.1_all.deb
      Size/MD5:  2093412 4cdda893bedc7e4e8cecdfd68b73cc04
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-doc_2.2.11-1ubuntu3.1_all.deb
      Size/MD5:   527466 8edee6915a0ad1a6d45a14ab8ecc847a

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-dbg_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:  8473344 1a6612ca5386e16e44adc93554c2567e
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:    53096 665807789fecc435294fdda90d58fe35
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:   133490 2cb5b3d370051bad846a5963fbccaf24
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:    53156 148b06d4fc0661241adbf234c4f814fa
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:  3147966 763f65666e85c50004284d518ccfc4f5
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:   108734 16ad76637519d42d8afdc780978db281
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.11-1ubuntu3.1_amd64.deb
      Size/MD5:   453440 620657d5342af6e5fb9736b56c49e322

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-dbg_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:  7197248 997dcf3438d2df3f97515b57069b0a6d
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:    51792 37ea6be3a30463338060e70a4de58ec0
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:   125872 ce230923c066949ec6314b50a666484c
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:    52220 0a094c0178ed7034404a87e391f66f73
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:  2777714 4faf75153a46135a8d8c7b9d6b10c986
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:   108758 b4ed9b42f95fc07aa809fc49e2538ba8
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.11-1ubuntu3.1_i386.deb
      Size/MD5:   410296 0725cc03751a2bbcee0707a0975bc2ed

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-dbg_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:  8506604 46a43967bff3eb77bf8a2018208fc847
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:    53564 b44a95cf20502d19c8e331c8577c07d8
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:   129400 986c1e4c82efc7c81a7aa7b72e44d90a
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:    54222 2efc43f1a03e224bd342514b0d01a799
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:  3229098 e500ce8a902d0837ec4d19f7b511c3ba
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:   108760 153b87573a51321a5d1ecd5cfc0f0698
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.11-1ubuntu3.1_powerpc.deb
      Size/MD5:   444870 b5bb55e95bb99d6b091a52a06997ddcd

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-dbg_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:  7493990 d1a7b839cf5ede21cdb9017d031fd404
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-helpbrowser_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:    51956 209e08ed952a02a16acbe32de2cdc760
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp-python_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:   127186 36c4e2ec85bce5a19d8dac0573bf0436
    http://security.ubuntu.com/ubuntu/pool/universe/g/gimp/gimp-svg_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:    52422 908d3b06661d753ccbc7f445080aeb14
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/gimp_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:  2821484 2a90f76cb39506c026577a1ecdad031d
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0-dev_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:   108758 07790df1c789e274534c5506e463288f
    http://security.ubuntu.com/ubuntu/pool/main/g/gimp/libgimp2.0_2.2.11-1ubuntu3.1_sparc.deb
      Size/MD5:   428780 86eaed52e36beb83a3eef41f21f810a9


Download attachment "signature.asc" of type "application/pgp-signature" (190 bytes)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ