Anolis OS update for gimp:2.8 module



| Updated: 2025-03-28
Risk High
Patch available YES
Number of vulnerabilities 3
CVE-ID CVE-2023-44442
CVE-2023-44444
CVE-2023-44443
CWE-ID CWE-122
CWE-193
CWE-190
Exploitation vector Network
Public exploit N/A
Vulnerable software
 Anolis OS
Operating systems & Components / Operating system

pygtk2-doc
Operating systems & Components / Operating system package or component

python2-cairo-devel
Operating systems & Components / Operating system package or component

python2-cairo
Operating systems & Components / Operating system package or component

pygtk2-devel
Operating systems & Components / Operating system package or component

pygtk2-codegen
Operating systems & Components / Operating system package or component

pygtk2
Operating systems & Components / Operating system package or component

pygobject2-doc
Operating systems & Components / Operating system package or component

pygobject2-devel
Operating systems & Components / Operating system package or component

pygobject2-codegen
Operating systems & Components / Operating system package or component

pygobject2
Operating systems & Components / Operating system package or component

gimp-libs
Operating systems & Components / Operating system package or component

gimp-devel-tools
Operating systems & Components / Operating system package or component

gimp-devel
Operating systems & Components / Operating system package or component

gimp
Operating systems & Components / Operating system package or component

Vendor OpenAnolis

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) Heap-based buffer overflow

EUVDB-ID: #VU83203

Risk: High

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-44442

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the parsing of PSD files. A remote attacker can trick a victim to open a specially crafted file, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

pygtk2-doc: before 2.24.0-25

python2-cairo-devel: before 1.16.3-6

python2-cairo: before 1.16.3-6

pygtk2-devel: before 2.24.0-25

pygtk2-codegen: before 2.24.0-25

pygtk2: before 2.24.0-25

pygobject2-doc: before 2.28.7-4

pygobject2-devel: before 2.28.7-4

pygobject2-codegen: before 2.28.7-4

pygobject2: before 2.28.7-4

gimp-libs: before 2.8.22-25

gimp-devel-tools: before 2.8.22-25

gimp-devel: before 2.8.22-25

gimp: before 2.8.22-25

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0072


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Off-by-one

EUVDB-ID: #VU83206

Risk: High

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-44444

CWE-ID: CWE-193 - Off-by-one Error

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to an off-by-one error within the parsing of PSP files. A remote attacker can trick a victim to open a specially crafted file, trigger an off-by-one error and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

pygtk2-doc: before 2.24.0-25

python2-cairo-devel: before 1.16.3-6

python2-cairo: before 1.16.3-6

pygtk2-devel: before 2.24.0-25

pygtk2-codegen: before 2.24.0-25

pygtk2: before 2.24.0-25

pygobject2-doc: before 2.28.7-4

pygobject2-devel: before 2.28.7-4

pygobject2-codegen: before 2.28.7-4

pygobject2: before 2.28.7-4

gimp-libs: before 2.8.22-25

gimp-devel-tools: before 2.8.22-25

gimp-devel: before 2.8.22-25

gimp: before 2.8.22-25

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0072


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Integer overflow

EUVDB-ID: #VU83204

Risk: High

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-44443

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow within the parsing of PSP files. A remote attacker can trick a victim to open a specially crafted file, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

pygtk2-doc: before 2.24.0-25

python2-cairo-devel: before 1.16.3-6

python2-cairo: before 1.16.3-6

pygtk2-devel: before 2.24.0-25

pygtk2-codegen: before 2.24.0-25

pygtk2: before 2.24.0-25

pygobject2-doc: before 2.28.7-4

pygobject2-devel: before 2.28.7-4

pygobject2-codegen: before 2.28.7-4

pygobject2: before 2.28.7-4

gimp-libs: before 2.8.22-25

gimp-devel-tools: before 2.8.22-25

gimp-devel: before 2.8.22-25

gimp: before 2.8.22-25

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0072


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###