Download
| Alert*
oval:org.secpod.oval:def:60187
The host is installed with GIMP through 2.10.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the way GIMP makes g_get_tmp_dir calls to establish temporary filenames. Successful exploitation could allow attack ... oval:org.secpod.oval:def:2001002 GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimp_write_and_read_file function in app/tests/test-xcf.c. This might be leveraged by attackers to overwrite files or read file content that was ... oval:org.secpod.oval:def:61462 The host is installed with GIMP through 2.10.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the way GIMP makes g_get_tmp_dir calls to establish temporary filenames. Successful exploitation could allow attack ... |