[Solved] GIMP - 2.10.4 - Possible False Positive
https://www.gimp.org/downloads/ says that the current stable release is "2.10.4" but CARMA shows the application as "Unsafe" while indicating that the installed version is "2.10.4".
Then I mark it as solved.
So is this issue fixed now?
We found evidence that this is indeed fixed, state has been updated to reflect this
Thanks for reporting this.
This is a known issue, if you read this post:
However, GIMP seems to be vulnerable to this old vuln: CVE-2017-17789 in file-psp.exe There is no immediate announcements or entries in the changelog about this being fixed.
As soon as we get some pointer to a changelog or other statement about this being fixed in a specific version, then we will update the rules to reflect this.