USN-1214-1: GIMP vulnerability
22 September 2011
GIMP could be made to run programs as your login if it opened a specially crafted GIF file.
- gimp - The GNU Image Manipulation Program
Tomas Hoger discovered that GIMP incorrectly handled malformed LZW streams.
If a user were tricked into opening a specially crafted GIF image file, an
attacker could cause GIMP to crash, or possibly execute arbitrary code with
the user's privileges.
- USN-1207-1: cups, cupsys, libcupsimage2