Fedora 17 : gimp-2.8.4-1.fc17 (2013-2000)

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

Among other things this update fixes a vulnerability with corrupt XWD
files and a crash with newer versions of fontconfig when gimp is quit.

Overview of Changes from GIMP 2.8.2 to GIMP 2.8.4
=================================================

GUI :

- Better names for the default filters in save and export

- Make tool drawing (esp. the brush outline) much more
responsive

- Remember the 'maximized' state across sessions

- Simplify the splash image code a lot, makes it appear
immediately again

- Allow the text tool to start on an image without
layers

- Various fixes for text style attribute handling

- Set unconfigured input devices to eraser if GTK+ says
they are erasers

Libgimp :

- Make libgimp drawable combo boxes aware of layer groups

- Fix item width in GimpPageSelector (used e.g. in PDF
import)

Plug-ins :

- Better default values in the Drop Shadow script

- Fix a whole bunch of bugs in the BMP plug-in

General :

- Lots of bug fixes

- Lots of translation updates

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=879302
http://www.nessus.org/u?911d2433

Solution :

Update the affected gimp package.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.5
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Fedora Local Security Checks

Nessus Plugin ID: 64733 ()

Bugtraq ID: 56647

CVE ID: CVE-2012-5576

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now