CLD-443 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2018-12713 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s)

Basic Information:

Affected Package(s) gimp
Deficiency Type SECURITY
Date Created 2018-06-26 14:56:58
Date Last Modified 2018-06-27 11:22:05

Version Specific Information:

Cucumber 1.0 i686not affected (mostly)
Cucumber 1.0 x86_64not affected (mostly)

Cucumber 1.1 i686 not affected (mostly)
Cucumber 1.1 x86_64 not affected (mostly)

Details:

This is a vulnerability in the GIMP test suite, not the actual application.
Users of the GIMP binary package are completely unaffected. Users building GIMP
from source are affected only if they run the test suite (i.e.`make check`).
This is not the default when building GIMP using the Cucumber Linux
buildscript.

Additionally, the affected code is not present in GIMP 2.8.22, so it is unclear
if this older version is affected.