Lucene search
K

76 matches found

EUVD
EUVD
added 4 days ago6 views

EUVD-2026-41560

A flaw was found in GIMP's Paint Shop Pro PSP file format parser. This heap buffer overflow vulnerability allows a remote attacker to cause arbitrary code execution or a denial of service DoS by tricking a user into opening a specially crafted PSP image file. The vulnerability occurs because the...

7.3CVSS6.7AI score0.00233EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability in GIMP

A flaw was discovered in GIMP. A integer overflow vulnerability exists in the GIMP “Despeckle” plug-in. The issue arises due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel imgbpp. This can lead to insufficient memory allocation and subsequent...

7.8CVSS7.5AI score0.00419EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/26 8:52 a.m.17 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.4AI score0.00755EPSS
Exploits1References6
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in GIMP

GIMP PSP File Parsing: An Off-by-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability, as the target must visit a malicious page or open a malicio...

7.8CVSS7.8AI score0.56404EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.8 views

PT-2026-33128

Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A heap buffer over-read occurs in the icns slurp function when processing specially crafted ICNS image files. This can lead to application crashes or information disclosure. Recommendations At t...

7.1CVSS6.1AI score0.00167EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.51 views

Amazon Linux 2 : gimp, --advisory ALAS2GIMP-2026-013 (ALASGIMP-2026-013)

The version of gimp installed on the remote host is prior to 2.8.22-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2GIMP-2026-013 advisory. A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP's PCX file loader due to an off- by-one error. A remote...

7.1CVSS5.9AI score0.00634EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/04/11 1:16 a.m.4 views

CVE-2026-4151

GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS7.6AI score0.00664EPSS
Exploits0References4
Fedora
Fedora
added 2026/03/07 12:34 a.m.7 views

[SECURITY] Fedora 44 Update: gimp-3.0.8-5.fc44

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

5.7AI score
Exploits0
CVE
CVE
added 2026/02/20 10:23 p.m.26 views

CVE-2026-2048

CVE-2026-2048 refers to GIMP XWD file parsing Out-Of-Bounds Write with remote code execution. According to the connected advisories, the flaw is caused by insufficient validation of user-supplied data during XWD file parsing, allowing a write past the end of a heap/buffer to occur and enabling co...

7.8CVSS7.8AI score0.00622EPSS
Exploits0References15Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/20 10:23 p.m.2 views

CVE-2026-2047 GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

7.8CVSS6.4AI score0.0062EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/20 10:10 p.m.3 views

CVE-2026-0797 GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.8AI score0.01157EPSS
Exploits0References2
OSV
OSV
added 2026/02/18 12:0 a.m.6 views

DSA-6139-1 gimp - security update

Bulletin has no description...

6.5CVSS5.1AI score0.00838EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2026/01/29 2:13 p.m.8 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.4AI score0.00539EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/29 12:0 a.m.6 views

RHEL 8 : gimp:2.8 (RHSA-2026:1574)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1574 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including...

7.8CVSS6AI score0.00508EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/01/28 8:23 p.m.9 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.4AI score0.00539EPSS
Exploits1References3
Fedora
Fedora
added 2026/01/28 12:53 a.m.5 views

[SECURITY] Fedora 43 Update: gimp-3.0.8-4.fc43

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

5.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/01/07 3:8 p.m.52 views

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

7.8CVSS6.5AI score0.00644EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/24 12:30 a.m.5 views

EUVD-2025-204981

GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS7AI score0.00539EPSS
Exploits0References3
NVD
NVD
added 2025/12/23 10:15 p.m.8 views

CVE-2025-14422

GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS0.00508EPSS
Exploits1References2
OSV
OSV
added 2025/12/23 10:15 p.m.2 views

UBUNTU-CVE-2025-14424

GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

7.8CVSS6.2AI score0.00539EPSS
Exploits0References4
Rows per page
Query Builder