CVE-2018-12713

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-12713
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-12713.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-12713
Downstream
Published
2018-06-24T22:29:00.267Z
Modified
2025-11-20T10:48:38.717732Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
[none]
Details

GIMP through 2.10.2 makes ggettmpdir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimpwriteandread_file function in app/tests/test-xcf.c. This might be leveraged by attackers to overwrite files or read file content that was intended to be private.

References

Affected packages

Git / github.com/gnome/gimp

Affected ranges

Type
GIT
Repo
https://github.com/gnome/gimp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
c21eff4b031acb04fb4dfce8bd5fdfecc2b6524f

Affected versions

Other

BASE_ZERO
BEFORE_GIMAGE_IS_FLAT_REMOVAL
BEFORE_MATTS_CRAZY_TOOL_PATCH
BEFORE_TILE_MADNESS
FOR_PANEL
GIMP_0_99_16
GIMP_0_99_17
GIMP_0_99_18
GIMP_0_99_19
GIMP_0_99_20
GIMP_0_99_21
GIMP_0_99_22
GIMP_0_99_23
GIMP_0_99_24
GIMP_0_99_25
GIMP_0_99_27
GIMP_0_99_28
GIMP_0_99_29
GIMP_19990910
GIMP_1_0_0
GIMP_1_1_0
GIMP_1_1_1
GIMP_1_1_10
GIMP_1_1_11
GIMP_1_1_12
GIMP_1_1_13
GIMP_1_1_14
GIMP_1_1_15
GIMP_1_1_16
GIMP_1_1_17
GIMP_1_1_18
GIMP_1_1_19
GIMP_1_1_2
GIMP_1_1_20
GIMP_1_1_21
GIMP_1_1_22
GIMP_1_1_23
GIMP_1_1_24
GIMP_1_1_25
GIMP_1_1_26
GIMP_1_1_27
GIMP_1_1_28
GIMP_1_1_29
GIMP_1_1_3
GIMP_1_1_30
GIMP_1_1_31
GIMP_1_1_32
GIMP_1_1_4
GIMP_1_1_5
GIMP_1_1_6
GIMP_1_1_7
GIMP_1_1_8
GIMP_1_1_9
GIMP_1_2_0
GIMP_1_3_0
GIMP_1_3_1
GIMP_1_3_10
GIMP_1_3_11
GIMP_1_3_12
GIMP_1_3_13
GIMP_1_3_14
GIMP_1_3_15
GIMP_1_3_16
GIMP_1_3_17
GIMP_1_3_18
GIMP_1_3_19
GIMP_1_3_2
GIMP_1_3_20
GIMP_1_3_21
GIMP_1_3_22
GIMP_1_3_23
GIMP_1_3_24
GIMP_1_3_25
GIMP_1_3_26
GIMP_1_3_27
GIMP_1_3_3
GIMP_1_3_4
GIMP_1_3_5
GIMP_1_3_6
GIMP_1_3_7
GIMP_1_3_8
GIMP_1_3_9
GIMP_2_0_0
GIMP_2_0_1
GIMP_2_0_RC1
GIMP_2_10_0
GIMP_2_10_0_RC1
GIMP_2_10_0_RC2
GIMP_2_10_2
GIMP_2_1_0
GIMP_2_1_1
GIMP_2_1_2
GIMP_2_1_3
GIMP_2_1_4
GIMP_2_1_5
GIMP_2_1_6
GIMP_2_1_7
GIMP_2_2_0
GIMP_2_2_1
GIMP_2_2_PRE1
GIMP_2_2_PRE2
GIMP_2_3_0
GIMP_2_3_1
GIMP_2_3_10
GIMP_2_3_11
GIMP_2_3_12
GIMP_2_3_13
GIMP_2_3_14
GIMP_2_3_16
GIMP_2_3_17
GIMP_2_3_18
GIMP_2_3_19
GIMP_2_3_2
GIMP_2_3_3
GIMP_2_3_4
GIMP_2_3_5
GIMP_2_3_6
GIMP_2_3_7
GIMP_2_3_8
GIMP_2_3_9
GIMP_2_4_0_RC1
GIMP_2_4_0_RC2
GIMP_2_4_0_RC3
GIMP_2_4_1
GIMP_2_5_0
GIMP_2_5_1
GIMP_2_5_2
GIMP_2_5_3
GIMP_2_5_4
GIMP_2_6_0
GIMP_2_6_1
GIMP_2_7_0
GIMP_2_7_1
GIMP_2_7_2
GIMP_2_7_3
GIMP_2_7_4
GIMP_2_7_5
GIMP_2_8_0
GIMP_2_8_0_RC1
GIMP_2_9_2
GIMP_2_9_4
GIMP_2_9_6
GIMP_2_9_8
GIMP_BEFORE_GTK_2_0
GNOME_2_4_BRANCHPOINT
GNOME_BASE
GNOME_PRINT_0_24
LIBRSVG_2_1_1
LIBRSVG_2_1_2
LIBRSVG_2_1_3
LIBRSVG_2_1_4
LIBRSVG_2_1_5
LIBRSVG_2_2_0
NEEDS_GIMP_2_3_10
PROJECT_SUNLIGHT_ANCHOR
ROSALIA_BEFORE_COMMITTING_DL_AND_GNOME_HELLO
SCRIPT_FU_BEFORE_TINYSCHEME
SCRIPT_FU_MERGE
SNAP_19971121
TINY_FU_0_9_3
TINY_FU_0_9_4
TINY_FU_0_9_5
TINY_FU_0_9_6
TINY_FU_0_9_7
TINY_FU_0_9_8
TINY_FU_1_0_0
TINY_FU_1_0_1
TINY_FU_1_0_RC1
TINY_FU_1_1_0
gimp
release-2-2-4
release-2-2-5
release-2-3-0
release-2-4-0
soc-2012-unified-transform-after-gsoc
soc-2012-unified-transform-before-gsoc

Database specific

vanir_signatures

[
    {
        "id": "CVE-2018-12713-3642012a",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "302901949475160063291166101529738444603",
                "180336650635012902928322728999906428166",
                "28486985560848891885235672062341994466",
                "158273357039027028393830014356843302026",
                "128625577424982431000831071240210830750",
                "5241181887966751265866766636745923479",
                "145861882277219364620732936226584907881",
                "304807386349986218258873917128084067134"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://github.com/gnome/gimp/commit/c21eff4b031acb04fb4dfce8bd5fdfecc2b6524f",
        "target": {
            "file": "app/tests/test-xcf.c"
        }
    },
    {
        "id": "CVE-2018-12713-445f4776",
        "signature_version": "v1",
        "digest": {
            "function_hash": "13436723696371480992353462687333387978",
            "length": 689.0
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://github.com/gnome/gimp/commit/c21eff4b031acb04fb4dfce8bd5fdfecc2b6524f",
        "target": {
            "file": "app/tests/test-xcf.c",
            "function": "gimp_write_and_read_file"
        }
    }
]