Synopsis: Moderate: gimp security update Issue date: RHSA-2007:0513-01 CVE Names: CVE-2006-4519 CVE-2007-2949 CVE-2007-3741 Multiple integer overflow and input validation flaws were found in The GIMP's image loaders. An attacker could create a carefully crafted image file that could cause The GIMP to crash or possibly execute arbitrary code if the file was opened by a victim. (CVE-2006-4519, CVE-2007-2949, CVE-2007-3741) SL 3.0.x SRPMS: gimp-1.2.3-20.9.el3.src.rpm i386: gimp-1.2.3-20.9.el3.i386.rpm gimp-devel-1.2.3-20.9.el3.i386.rpm gimp-perl-1.2.3-20.9.el3.i386.rpm x86_64: gimp-1.2.3-20.9.el3.x86_64.rpm gimp-devel-1.2.3-20.9.el3.x86_64.rpm gimp-perl-1.2.3-20.9.el3.x86_64.rpm SL 4.x SRPMS: gimp-2.0.5-7.0.7.el4.src.rpm i386: gimp-2.0.5-7.0.7.el4.i386.rpm gimp-devel-2.0.5-7.0.7.el4.i386.rpm x86_64: gimp-2.0.5-7.0.7.el4.x86_64.rpm gimp-devel-2.0.5-7.0.7.el4.x86_64.rpm SL 5.x SRPMS: gimp-2.2.13-2.0.7.el5.src.rpm i386: gimp-2.2.13-2.0.7.el5.i386.rpm gimp-devel-2.2.13-2.0.7.el5.i386.rpm gimp-libs-2.2.13-2.0.7.el5.i386.rpm x86_64: gimp-2.2.13-2.0.7.el5.x86_64.rpm gimp-devel-2.2.13-2.0.7.el5.i386.rpm gimp-devel-2.2.13-2.0.7.el5.x86_64.rpm gimp-libs-2.2.13-2.0.7.el5.i386.rpm gimp-libs-2.2.13-2.0.7.el5.x86_64.rpm -Connie Sieh -Troy Dawson