GIMP: GIMP: Arbitrary code execution via specially crafted PSD file

A flaw was found in GIMP. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted PSD Photoshop Document file. This flaw is due to an integer overflow during the parsing of PSD files, which can lead to arbitrary code execution, allowing the attacker to run...

CVE-2026-6384

GIMP contains a buffer overflow in the GIF image loading component’s ReadJeffsImage function. Processing a specially crafted GIF can cause writes beyond the allocated buffer, leading to denial of service and potentially arbitrary code execution. Affected software: GIMP (GIF image processing). Und...

RHSA-2026:5389 Red Hat Security Advisory: gimp security update

Bulletin has no description...

CVE-2026-0797

GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

Oracle Linux 8 : gimp:2.8 (ELSA-2026-1574)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1574 advisory. gimp 2:2.8.22-26.4 - fix CVE-2025-14422 pygobject2 pygtk2 python2-pycairo Tenable has extracted the preceding description block directly from the Oracle Linux...

PT-2026-21332

Name of the Vulnerable Software and Affected Versions GIMP versions 3.0.8 through 3.0.8-5 Fedora 43 Description A heap-buffer-overflow exists in the PSD loader component of the software, specifically within the fread pascal string function due to a missing null terminator. This issue can be...

CVE-2025-14422 GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability

GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

RHEL 8 : gimp:2.8 (RHSA-2025:23857)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:23857 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XCF files. The...

RHSA-2025:22497 Red Hat Security Advisory: gimp security update

Bulletin has no description...

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability was discovered in GIMP’s DICOM DCM file parser. The flaw occurs because the application fails to properly validate the length of user-supplied data before copying it to a heap buffer. This can lead to arbitrary code execution when a user opens a speciall...

RHEL 9 : gimp (RHSA-2025:22496)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22496 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

CVE-2025-10921

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

EUVD-2017-8939

Malware in sbrugna...

EUVD-2012-3437

Malware in sbrugna...

RHSA-2025:9314 Red Hat Security Advisory: gimp security update

Bulletin has no description...

DSA-5939-1 gimp - security update

Bulletin has no description...

ALSA-2025:7417 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: dds buffe...

RHSA-2025:3629 Red Hat Security Advisory: gimp security update

Bulletin has no description...

[SECURITY] Fedora 40 Update: gimp-2.10.38-12.fc40

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...