Canonical Fixes GIMP Exploit Which Allowed Arbitrary Code Execution

view full story

http://news.softpedia.com – On December 9, in a security notice, Canonical published details about a GIMP vulnerability in its Ubuntu 13.10, Ubuntu 13.04, Ubuntu 12.10, and Ubuntu 12.04 LTS operating systems.According to the company, GIMP could be made to crash or run programs, as the user’s login, if it opened a specially crafted file.It has been discovered that GIMP incorrectly handled malformed XWD files. If a user were tricked into opening a specially crafted XWD file, an attacker could ... (read more) (IT news)