CVE-2026-33243 barebox: FIT Signature Verification Bypass Vulnerability

barebox is a bootloader. In barebox from version 2016.03.0 to before version 2026.03.1 and the corresponding backport to 2025.09.3, an attacker could exploit a FIT signature verification vulnerability to trick the bootloader into booting different images than those that were verified as part of a...

EUVD-2012-3214

Malware in sbrugna...

SUSE CVE-2012-3236

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...

Founder's FIT Handling FIT File Memory Corruption Vulnerability (CNVD-2016-12759)

Founder Fetion is a comprehensive typesetting software integrating images, texts and forms developed by Beijing Beifang Founder Electronics Co. A memory corruption vulnerability exists in Founder Fetion's handling of FIT files, which allows an attacker to exploit the vulnerability to construct a...

DEBIAN-CVE-2012-3236

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...

Null pointer dereference

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...

CVE-2012-3236

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...

CVE-2012-3236

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...

GIMP 2.8.0 - '.FIT' File Format Denial of Service

Summary ======= There is a file handling DoS in GIMP the GNU Image Manipulation Program for the 'fit' file format affecting all versions Windows and Linux up to and including 2.8.0. A file in the fit format with a malformed 'XTENSION' header will cause a crash in the GIMP program. CVE number:...

GIMP 2.8.0 - .FIT File Format Denial of Service

GIMP 2.8.0 - .FIT File Format Denial of Service Summary ======= There is a file handling DoS in GIMP the GNU Image Manipulation Program for the 'fit' file format affecting all versions Windows and Linux up to and including 2.8.0. A file in the fit format with a malformed 'XTENSION' header will...

GIMP 2.8.0 FIT File Format DoS

Exploit for windows platform in category dos / poc Summary ======= There is a file handling DoS in GIMP the GNU Image Manipulation Program for the 'fit' file format affecting all versions Windows and Linux up to and including 2.8.0. A file in the fit format with a malformed 'XTENSION' header will...

CVE-2012-3236

fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a malformed XTENSION header of a .fit file, as demonstrated using a long string...