CLSA-2026-1770311244 gimp: Fix of 2 CVEs

CVE-2025-14425: fix JP2 image loader buffer overflow by validating pixel buffer size calculation to prevent potential remote code execution - CVE-2025-14422: fix parsing of PNM files to prevent integer overflow leading to remote code execution...

gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow

A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability during the parsing of a malicious PNM Portable Anymap image file. This issue stems from insufficient validation of user-supplied data, which can lead to an integer overflow before memory allocation...

ALSA-2026:1574 Important: gimp:2.8 security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

MiracleLinux 9 : gimp-3.0.4-1.el9_7.2 (AXSA:2026-085:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-085:01 advisory. gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow CVE-2025-14422 gimp: GIMP: Remote Code Execution via JP2 file parsing...

EUVD-2025-204983

GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

PT-2025-51983

Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A flaw exists in GIMP's parsing of PNM files due to insufficient validation of user-supplied data. This can lead to an integer overflow during buffer allocation, potentially allowing a remote...

EUVD-2005-3659

Malware in sbrugna...

EUVD-2005-1145

Malware in sbrugna...

EUVD-2005-3629

Malware in sbrugna...

SUSE CVE-2005-1275

Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denial of service application crash via a PNM file with a small colors value...

SUSE CVE-2014-9805

ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted pnm file...

SUSE CVE-2017-9159

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the pnmloadrawpbm function in input-pnm.c:391:15...

[ASA-202012-2] cimg: arbitrary code execution

Arch Linux Security Advisory ASA-202012-2 ========================================= Severity: Medium Date : 2020-12-05 CVE-ID : CVE-2020-25693 Package : cimg Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1318 Summary ======= The package cimg before version...

CVE-2014-9820

Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file...

Heap overflow

Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file...

CVE-2014-9805

ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted pnm file...

CVE-2014-9820

Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file...

Design/Logic Flaw

ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted pnm file...

DEBIAN-CVE-2014-9805

ImageMagick allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted pnm file...

CVE-2014-9820

Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file...