Lucene search
+L

102 matches found

OSV
OSV
added 2026/03/12 2:15 p.m.4 views

GHSA-H95R-C8C7-MRWX ImageMagick has heap-based buffer overflow in UHDR encoder

A heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. ================================================================ ==2158399==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x521000039500 at pc...

6.8CVSS6AI score0.00108EPSS
Exploits0References4
Snyk
Snyk
added 2026/03/09 9:46 p.m.4 views

Stack-based Buffer Overflow

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

8.6CVSS5.9AI score0.00107EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/25 7:15 p.m.7 views

Out-of-bounds Read

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:13 p.m.6 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.9CVSS6AI score
Exploits0References2
Snyk
Snyk
added 2026/02/24 3:37 p.m.2 views

Division by zero

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

7.5CVSS6AI score0.00385EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 12:53 a.m.6 views

Integer Overflow or Wraparound

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 12:53 a.m.5 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 12:53 a.m.7 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 12:53 a.m.5 views

Integer Overflow or Wraparound

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 12:53 a.m.6 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/12/12 1:6 p.m.3 views

Security update for gegl

This update for gegl fixes the following issues: CVE-2025-10921: Fixed HDR file parsing heap-based buffer overflow that can lead to remote code execution. bsc1250496 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.4CVSS8.4AI score0.00452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/05 12:0 a.m.7 views

Alibaba Cloud Linux 3 : 0191: gimp:2.8 (ALINUX3-SA-2025:0191)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0191 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-10920: GIMP ICNS File Parsing...

7.8CVSS8AI score0.02751EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/12/01 12:35 p.m.6 views

gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer-overflow in GIMP’s HDR RGBE file parsing CVE-2025-10921 / ZDI-25-910 allows an attacker to execute arbitrary code when a user opens or is tricked into previewing a malicious HDR file. The flaw is caused by missing length validation before copying user-supplied HDR data into a...

7.8CVSS6.2AI score0.00452EPSS
Exploits0References6
OSV
OSV
added 2025/11/25 9:10 a.m.16 views

RLSA-2025:21968 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP DCM...

7.8CVSS7.2AI score0.02751EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/10/30 9:0 a.m.3 views

CVE-2025-10921

A heap-based buffer-overflow in GIMP’s HDR RGBE file parsing CVE-2025-10921 / ZDI-25-910 allows an attacker to execute arbitrary code when a user opens or is tricked into previewing a malicious HDR file. The flaw is caused by missing length validation before copying user-supplied HDR data into a...

7.8CVSS7.8AI score0.00452EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/29 9:30 p.m.2 views

EUVD-2025-36717

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.1AI score0.00452EPSS
Exploits0References3
NVD
NVD
added 2025/10/29 8:15 p.m.3 views

CVE-2025-10921

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.00452EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/10/29 7:29 p.m.2 views

CVE-2025-10921

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.8AI score0.00452EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/29 7:29 p.m.9 views

CVE-2025-10921 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.00452EPSS
Exploits0References2
OSV
OSV
added 2025/10/29 7:29 p.m.2 views

CVE-2025-10921 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.6AI score0.00452EPSS
Exploits0References5
Rows per page
Query Builder