Advisories MDKSA-2006:127: Updated gimp packages fix buffer overflow vulnerability.

[paul]

A buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c

for gimp 2.2.x allows user-complicit attackers to cause a denial of

service (crash) and possibly execute arbitrary code via an XCF file

with a large num_axes value in the VECTORS property.

 

Updated packages have been patched to correct this issue.