Lucene search
K

728 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:52 a.m.12 views

CVE-2022-42939

A malicious crafted TGA file when consumed through DesignReview.exe application could lead to memory corruption vulnerability. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

7.8CVSS7.6AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:49 a.m.8 views

CVE-2022-27870

A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA file. This vulnerability may be exploited to execute arbitrary code...

7.8CVSS7.7AI score0.00727EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:48 a.m.10 views

CVE-2022-27865

A maliciously crafted TGA or PCX file may be used to write beyond the allocated buffer through DesignReview.exe application while parsing TGA and PCX files. This vulnerability may be exploited to execute arbitrary code...

7.8CVSS7.8AI score0.00228EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.7 views

Oracle Linux 7 : gimp (ELSA-2025-22866)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22866 advisory. - Fixes CVE-2025-10922 and CVE-2025-10934 Orabug: 38739185 - Fixes CVE-2025-5473 GIMP ICO File Parsing Integer Overflow Orabug: 38110877 - Fixes...

8.8CVSS7.6AI score0.11066EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.8 views

Debian dla-4395 : krita - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4395 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4395-1 [email protected] https://www.debian.org/lts/security/...

6.7CVSS5.7AI score0.0018EPSS
Exploits0References4
Debian
Debian
added 2025/12/06 1:28 a.m.7 views

[SECURITY] [DLA 4395-1] krita security update

Debian LTS Advisory DLA-4395-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 05, 2025 https://wiki.debian.org/LTS Package : krita Version : 1:4.4.2+dfsg-1+deb11u1 CVE ID : CVE-2025-59820 Loading a manipulated TGA file in krita, an image manipulation...

6.7CVSS7.2AI score0.0018EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.9 views

Debian dsa-6065 : krita - security update

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6065 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6065-1 [email protected] https://www.debian.org/security/...

6.7CVSS6.5AI score0.0018EPSS
Exploits0References5
Debian
Debian
added 2025/11/27 8:47 p.m.7 views

[SECURITY] [DSA 6065-1] krita security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6065-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 27, 2025 https://www.debian.org/security/faq -...

6.7CVSS7.9AI score0.0018EPSS
Exploits0
NVD
NVD
added 2025/11/26 6:15 a.m.5 views

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS0.0018EPSS
Exploits0References4
OSV
OSV
added 2025/11/26 6:15 a.m.6 views

UBUNTU-CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS6.1AI score0.0018EPSS
Exploits0References5
CVE
CVE
added 2025/11/26 12:0 a.m.31 views

CVE-2025-59820

CVE-2025-59820 affects KDE Krita prior to 5.2.13, where loading a manipulated TGA file can trigger a heap-based buffer overflow in KisTgaImport (plugins/impex/tga/kis_tga_import.cpp). Debian/Alpine advisories confirm this can lead to potential arbitrary code execution; fixed packages are provided...

6.7CVSS7AI score0.0018EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/11/26 12:0 a.m.4 views

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS7AI score0.0018EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/26 12:0 a.m.10 views

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS0.0018EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/11/26 12:0 a.m.6 views

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS7.7AI score0.0018EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/11/26 12:0 a.m.5 views

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kistgaimport.cpp aka KisTgaImport. Control flow proceeds even when a number of pixels becomes negative...

6.7CVSS7.4AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.5 views

TencentOS Server 4: gimp (TSSA-2025:0601)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0601 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.3CVSS7.2AI score0.00191EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 3: gimp:2.8 (TSSA-2025:0473)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0473 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS8AI score0.11066EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2025/10/27 12:0 a.m.5 views

Krita TGA File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Krita. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TGA files. Th...

7.8CVSS7.2AI score0.0018EPSS
Exploits0References1
Debian
Debian
added 2025/10/22 4:59 p.m.15 views

[SECURITY] [DLA 4342-1] gimp security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4342-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler October 22, 2025 https://wiki.debian.org/LTS -...

8.8CVSS8.8AI score0.11066EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/10 12:0 a.m.5 views

RockyLinux 9 : gimp (RLSA-2025:9162)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:9162 advisory. gimp: Multiple use after free in XCF parser CVE-2025-48798 gimp: Multiple heap buffer overflows in TGA parser CVE-2025-48797 gimp: GIMP ICO File Parsing...

8.8CVSS7.7AI score0.11066EPSS
Exploits0References7
Rows per page
Query Builder