CVE-2017-17786

Priority
Low
Description
In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in
plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected
bits-per-pixel value for an RGBA image.
References
Bugs
Package
Source: gimp (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (2.8.10-0ubuntu1.2)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 17.10 (Artful Aardvark):ignored (reached end-of-life)
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
More Information

Updated: 2018-07-20 15:20:55 UTC (commit a528766076160b2c60cf56892e2070e2c83615a3)