Mandriva Linux Security Advisory : gimp (MDVSA-2013:293)
Medium Nessus Plugin ID 71512
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated gimp package fixes security vulnerabilities :
An integer overflow flaw and a heap-based buffer overflow were found in the way GIMP loaded certain X Window System (XWD) image dump files.
A remote attacker could provide a specially crafted XWD image file that, when processed, would cause the XWD plug-in to crash or, potentially, execute arbitrary code with the privileges of the user running the GIMP (CVE-2013-1913, CVE-2013-1978).
SolutionUpdate the affected packages.