[Solved] GIMP - 2.10.4 - Possible False Positive

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Wed, 05 Dec 2018 19:56:14 GMT

OLLI_S — Wed, 05 Dec 2018 19:56:14 GMT

Then I mark it as solved.

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Wed, 05 Dec 2018 13:15:52 GMT

Tom — Wed, 05 Dec 2018 13:15:52 GMT

@OLLI_S
Yes

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Tue, 04 Dec 2018 20:19:24 GMT

OLLI_S — Tue, 04 Dec 2018 20:19:24 GMT

So is this issue fixed now?

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Tue, 04 Dec 2018 12:12:59 GMT

Tom — Tue, 04 Dec 2018 12:12:59 GMT

We found evidence that this is indeed fixed, state has been updated to reflect this

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Thu, 30 Aug 2018 19:45:54 GMT

OLLI_S — Thu, 30 Aug 2018 19:45:54 GMT

@Zian There are two suggestions in this forum related to such issues:

Feel free to comment and vote on those suggestions.

Reply to [Solved] GIMP - 2.10.4 - Possible False Positive on Wed, 15 Aug 2018 07:02:05 GMT

Tom — Wed, 15 Aug 2018 07:02:05 GMT

Hi Zian,
Thanks for reporting this.
This is a known issue, if you read this post:
https://vulndetect.org/post/1310

However, GIMP seems to be vulnerable to this old vuln:
CVE-2017-17789 in file-psp.exe
There is no immediate announcements or entries in the changelog about this being fixed.

As soon as we get some pointer to a changelog or other statement about this being fixed in a specific version, then we will update the rules to reflect this.