Lucene search
K

21 matches found

EUVD
EUVD
added 2026/06/25 12:33 a.m.4 views

EUVD-2026-39130

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.6AI score0.00552EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/24 9:43 p.m.23 views

CVE-2026-2050 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.00552EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 10:16 p.m.14 views

CVE-2026-2049

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.00615EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/10 9:22 p.m.32 views

CVE-2026-2049 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.00615EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 9:22 p.m.24 views

CVE-2026-2049

CVE-2026-2049 is a heap-based buffer overflow in HDR file parsing within gegl (used by GIMP) caused by insufficient validation of the length of user-supplied data. This can lead to remote code execution when a user opens a malicious HDR file or visits a crafted page, as indicated by the CVSS vect...

7.8CVSS7.7AI score0.00615EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

SUSE SLED15 / SLES15 Security Update : gegl (SUSE-SU-2026:1481-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1481-1 advisory. This update for gegl fixes the following issue: - CVE-2026-2049: improper validation of the length of user-supplied dat...

7.8CVSS6.1AI score0.00615EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/04/20 4:14 p.m.16 views

Security update for gegl

This update for gegl fixes the following issues: CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.4CVSS7.3AI score0.00615EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/04/20 10:9 a.m.6 views

Security update for gegl

This update for gegl fixes the following issue: CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.4CVSS6AI score0.00615EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/12/11 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2025:4335-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.00452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/10 12:0 a.m.1 views

SUSE SLED15: gegl / gegl-0_4 / gegl-0_4-lang / gegl-devel / gegl-doc / etc (SUSE-SU-2025:4335-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4335-1 advisory. - CVE-2025-10921: lack of proper validation of user-supplied data when parsing HDR files can lead to RCE...

7.8CVSS7.2AI score0.00452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/10 12:0 a.m.4 views

SUSE SLED15 / SLES15 Security Update : gegl (SUSE-SU-2025:4333-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4333-1 advisory. - CVE-2025-10921: Fixed HDR file parsing heap-based buffer overflow that can lead to remote code execution. bsc1250496...

7.8CVSS7.6AI score0.00452EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/12/09 6:19 p.m.3 views

Security update for gegl

This update for gegl fixes the following issues: CVE-2025-10921: lack of proper validation of user-supplied data when parsing HDR files can lead to RCE bsc1250496. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

8.4CVSS7AI score0.00452EPSS
Exploits0References4
OSV
OSV
added 2025/12/09 6:19 p.m.3 views

SUSE-SU-2025:4335-1 Security update for gegl

This update for gegl fixes the following issues: - CVE-2025-10921: lack of proper validation of user-supplied data when parsing HDR files can lead to RCE bsc1250496...

7.8CVSS6.8AI score0.00452EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/12/09 2:42 p.m.3 views

Security update for gegl

This update for gegl fixes the following issues: CVE-2025-10921: Fixed HDR file parsing heap-based buffer overflow that can lead to remote code execution. bsc1250496 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.4CVSS8.4AI score0.00452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.9 views

TencentOS Server 3: gimp:2.8 (TSSA-2025:0937)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0937 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.8CVSS8AI score0.02751EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.7 views

AlmaLinux 9 : gimp (ALSA-2025:21968)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:21968 advisory. gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-10922 gimp: GIMP ICNS File Parsing Out-Of-Bounds Writ...

7.8CVSS7.6AI score0.02751EPSS
Exploits0References9
OSV
OSV
added 2025/10/29 8:15 p.m.3 views

UBUNTU-CVE-2025-10921

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS6.2AI score0.00452EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.2 views

GIMP 安全漏洞

GIMP is an open source bitmap image editor from the GIMP team. A security vulnerability exists in GIMP that stems from not properly validating the length of user-supplied data when parsing HDR files, which could lead to a heap buffer overflow and remote code execution...

7.8CVSS8AI score0.00452EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.6 views

Amazon Linux 2 : gegl, --advisory ALAS2-2025-3030 (ALAS-2025-3030)

The version of gegl installed on the remote host is prior to 0.2.0-19. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3030 advisory. GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-10921 Tenable has extracted the precedi...

7.8CVSS7.5AI score0.00452EPSS
Exploits0References4
Amazon
Amazon
added 2025/10/14 12:0 a.m.6 views

Important: gegl

Issue Overview: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-10921 Affected Packages: gegl Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories...

7.8CVSS7.5AI score0.00452EPSS
Exploits0
Rows per page
Query Builder