Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimp_write_and_read_file function in app/tests/test-xcf.c. This might be leveraged by attackers to overwrite files or read file content that was intended to be private.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GIMP 安全漏洞
Vulnerability Description
GIMP(GNU Image Manipulation Program,GNU图像处理程序)是GIMP团队开发的一套跨平台的开源图像处理软件。该软件能够实现多种图像处理,包括照片润饰、图像合成和图像创建等。 GIMP 2.10.2及之前版本中存在安全漏洞,该漏洞源于程序通过调用g_get_tmp_dir来建立临时文件名。攻击者可利用该漏洞覆盖文件或读取敏感的文件内容。
CVSS Information
N/A
Vulnerability Type
N/A