[SECURITY] Fedora 11 Update: gimp-2.6.8-1.fc11
updates at fedoraproject.org
updates at fedoraproject.org
Mon Jan 4 21:20:12 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-11880
2009-11-20 04:27:38
--------------------------------------------------------------------------------
Name : gimp
Product : Fedora 11
Version : 2.6.8
Release : 1.fc11
URL : http://www.gimp.org/
Summary : GNU Image Manipulation Program
Description :
GIMP (GNU Image Manipulation Program) is a powerful image composition and
editing program, which can be extremely useful for creating logos and other
graphics for webpages. GIMP has many of the tools and filters you would expect
to find in similar commercial offerings, and some interesting extras as well.
GIMP provides a large image manipulation toolbox, including channel operations
and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all
with multi-level undo.
--------------------------------------------------------------------------------
Update Information:
Overview of Changes from GIMP 2.6.7 to GIMP 2.6.8
================================================= * Bugs fixed: 470698 -
MapObject cannot modify highlight 593848 - FG color changed to black when FG-
BG Editor tab created 594651 - layer.scale() raises RuntimeError 594998 -
Keyboard shortcuts does not work for first image when dock is focused
599765 - F1 key on gimp-tool-align in menu have wrong link and it
open gimp-tool-move 600484 - Gimp BMP Integer Overflow Vulnerability 600741
- "read_channel_data()" Integer Overflow Vulnerability 601891 -
gimp_image_get_selection returns None 602761 - plug-in-grid: Parameters
Horizontal/Vertical Spacing and Horizontal/Vertical Offset are
reversed. 603995 - PCX plugin doesn't sanitize input to avoid allocation
overflows. 603998 - PCX: Calculating amount of memory to allocate may
overflow. 604000 - SGI: sanitize input 604001 - SGI: Calculating amount of
memory to allocate may overflow. 604002 - SGI: RLE encoded input data may
write beyond allocated buffers 604004 - SGI: allocate memory consistently
604008 - GBR, PAT: sanitize input data 604078 - Crash when pressing Backspace
with Free Select Tool * Updated and new translations: Basque (eu)
British English (en_GB) Czech (cs) French (fr) Greek (el) Italian (it)
Japanese (ja) Norwegian Nynorsk (nn) Polish (pl) Romanian (ro) Russian
(ru) Simplified Chinese (zh_CN) For more information about the above bugs,
please consult the respective tickets on: http://bugzilla.gnome.org
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 11 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.8-1
- version 2.6.8
Overview of Changes from GIMP 2.6.7 to GIMP 2.6.8
=================================================
* Bugs fixed:
470698 - MapObject cannot modify highlight
593848 - FG color changed to black when FG-BG Editor tab created
594651 - layer.scale() raises RuntimeError
594998 - Keyboard shortcuts does not work for first image when dock
is focused
599765 - F1 key on gimp-tool-align in menu have wrong link and it
open gimp-tool-move
600484 - Gimp BMP Integer Overflow Vulnerability
600741 - "read_channel_data()" Integer Overflow Vulnerability
601891 - gimp_image_get_selection returns None
602761 - plug-in-grid: Parameters Horizontal/Vertical Spacing and
Horizontal/Vertical Offset are reversed.
603995 - PCX plugin doesn't sanitize input to avoid allocation overflows.
603998 - PCX: Calculating amount of memory to allocate may overflow.
604000 - SGI: sanitize input
604001 - SGI: Calculating amount of memory to allocate may overflow.
604002 - SGI: RLE encoded input data may write beyond allocated buffers
604004 - SGI: allocate memory consistently
604008 - GBR, PAT: sanitize input data
604078 - Crash when pressing Backspace with Free Select Tool
* Updated and new translations:
Basque (eu)
British English (en_GB)
Czech (cs)
French (fr)
Greek (el)
Italian (it)
Japanese (ja)
Norwegian Nynorsk (nn)
Polish (pl)
Romanian (ro)
Russian (ru)
Simplified Chinese (zh_CN)
- remove obsolete bmp-hardening, psd-hardening patches
* Tue Nov 17 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.7-3
- avoid overflow in the BMP image file plugin (#537356)
- avoid overflow in the PSD image file plugin (#537370)
- update jpeg-units patch
* Tue Aug 18 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.7-2
- BR: webkitgtk-devel/WebKit-gtk-devel >= 1.1.0
* Fri Aug 14 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.7-1
- version 2.6.7
Overview of Changes from GIMP 2.6.6 to GIMP 2.6.7
=================================================
* Bugs fixed:
591017 - Tablet pan is not working as fast as it should
577581 - Crashes when using any colors tool/function on Windows
589667 - GIMP crashes when clicking GEGL Operation on Windows
569833 - file-jpeg-save erroneous with small quality values
590638 - Changing palettes from list to grid view loses "locked to dock"
status
589674 - "Send by Email" does not update "Filename"
589674 - "Send by Email" does not update "Filename"
586851 - Transparent BMP files fail to load
589205 - help-browser uses deprecated (and sometimes broken) webkit call
582821 - 'Sphere Designer' does not reset correctly...
570353 - first time open of .svg file ignores the requested units
555777 - Export to MNG animation fails
577301 - Dithering with transparency is broken for "positioned" method
493778 - metadata plug-in crashes on some images
567466 - PNG comment not found if more than 1 tEXt chunks
585665 - Exporting to PSD with a blank text layer creates a corrupt file
586316 - Levels tool does not adjust output levels correctly if input
levels are changed
569661 - Import from PDF throws errors when entering resolution in
pixels per millimetre
567262 - Black pixels appear in "Spread" filter preview
554658 - Path Dialog: Path preview pics not to see constantly
167604 - gimp_gradient_get_color_at() may return out-of-bounds values
567393 - Rectangle select tool size shrinks to 0 if size is larger than
the image and the up or down arrow is pressed
587543 - crash when invoking certain actions by keyboard shortcut
563029 - Closing maximized image doesn't restore document window size
585488 - Perspective transformation on a layer with a mask causes crash
586008 - GIMP crashes when right-click canceling a drawing action initiated
outside layer boundaries
584345 - when printing, the number of copies should be reset to 1
557061 - Alpha to Logo
472644 - Rotate with clipping crops the whole layer
577575 - transform tool fills underlying extracted area wrongly
555738 - Image display is wrong after undoing canvas size
577024 - help-browser plugin crashes when used with webkit 1.1.3
555025 - Action GEGL box widgets weirdness
* Updated and new translations:
Czech (cs)
Danish (da)
German (de)
Spanish (es)
Basque (eu)
Finnish (fi)
Hungarian (hu)
Italian (it)
Gujarati (gu)
Japanese (ja)
Kannada (kn)
Marathi (mr)
Norwegian bokmål (nb)
Oriya (or)
Portuguese (pt)
Romanian (ro)
Sinhala (si)
Swedish (sv)
Simplified Chinese (zh_CN)
Traditional Chinese - Hong Kong (zh_HK)
Traditional Chinese - Taiwan (zh_TW)
- remove obsolete gegl-babl-versions-check, help-browser-webkit patches
- comment/explain patches
* Fri Jul 24 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.6-8
- rebuild with chrpath >= 0.13-5 (#513419)
* Thu Jul 16 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.6-7
- rebuild against gegl-0.1 (#510209)
* Mon Jun 29 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.6-6
- really fix help browser crash with new WebKit versions (#508301)
* Sat Jun 27 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.6-5
- fix help browser crash with new WebKit versions (#508301)
- BR: webkitgtk-devel from F-11 on
* Fri Jun 5 2009 Nils Philippsen <nils at redhat.com> - 2:2.6.6-4
- don't build against aalib on RHEL
- use backported patch to correctly check gegl/babl versions
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update gimp' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list