Lucene search
K

18 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in GIMP

GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow attacks. Through a specially crafted XCF file, the program will allocate a large amount of memory, leading to insufficient memory resources or the program crashing...

5.5CVSS6.4AI score0.00721EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/24 6:20 a.m.5 views

CVE-2025-14424

A flaw was found in GIMP. This use-after-free vulnerability in the XCF file parsing component allows a remote attacker to execute arbitrary code. Successful exploitation requires user interaction, where a target must open a specially crafted malicious XCF file. This can lead to the execution of...

7.8CVSS7.3AI score0.00539EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-8382

Malware in sbrugna...

6.5CVSS7.8AI score0.02991EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-36056

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00645EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.5 views

SUSE CVE-2016-4994

Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service program crash or possibly execute arbitrary code via a crafted XCF file...

7.8CVSS8AI score0.03113EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.6 views

SUSE CVE-2017-2887

An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...

7.8CVSS8AI score0.02656EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.5 views

SUSE CVE-2017-6501

An issue was discovered in ImageMagick 6.9.7. A specially crafted xcf file could lead to a NULL pointer dereference...

5.5CVSS9.2AI score0.01085EPSS
Exploits0References3
OSV
OSV
added 2022/06/24 2:15 p.m.4 views

DEBIAN-CVE-2022-32990

An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS...

5.5CVSS6.3AI score0.00645EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2022/06/24 2:15 p.m.30 views

CVE-2022-32990

An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS...

5.5CVSS6.8AI score0.00645EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2022/06/24 2:15 p.m.48 views

CVE-2022-32990

An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS...

5.5CVSS4.8AI score0.00645EPSS
Exploits1
OSV
OSV
added 2022/06/24 1:17 p.m.20 views

CVE-2022-32990

An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS...

5.5CVSS6.5AI score0.00645EPSS
Exploits1References3
CVE
CVE
added 2022/06/24 1:17 p.m.94 views

CVE-2022-32990

CVE-2022-32990 affects GNOME GIMP 2.10.30. The issue is in gimp_layer_invalidate_boundary and can be triggered by a crafted XCF file, leading to an unhandled exception and a Denial of Service (DoS) . Public references (GNOME CVE page, CNVD/CVE trackers) describe the vulnerability consistently; NV...

5.5CVSS5AI score0.00645EPSS
Exploits1References1Affected Software1
AlpineLinux
AlpineLinux
added 2022/05/17 5:15 p.m.38 views

CVE-2022-30067

GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash...

5.5CVSS2.6AI score0.00721EPSS
Exploits1
OSV
OSV
added 2019/11/21 4:15 p.m.5 views

UBUNTU-CVE-2019-5087

An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer overflow can occur while calculating the row's allocation size, that could be exploited to corrupt memory and eventually execute arbitrary...

8.8CVSS7.5AI score0.03637EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2019/11/21 12:0 a.m.4 views

PT-2019-17468 · Gimp +2 · Xcftools +2

Name of the Vulnerable Software and Affected Versions: xcftools version 1.0.7 Description: An integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries. This vulnerability can occur while calculating the row's allocation size, potentially...

8.8CVSS8.3AI score0.03637EPSS
Exploits2References20
OSV
OSV
added 2017/10/11 6:29 p.m.3 views

DEBIAN-CVE-2017-2887

An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...

8.8CVSS8AI score0.02656EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2016/08/25 12:0 a.m.2 views

PT-2016-7371 · Imagemagick +2 · Imagemagick +2

Name of the Vulnerable Software and Affected Versions: ImageMagick affected versions not specified Description: The issue allows remote attackers to cause a denial of service, specifically an out-of-bounds read, by using a crafted XCF file. This is related to the coders/xcf.c component in...

10CVSS6.8AI score0.49982EPSS
Exploits16References415
OSV
OSV
added 2016/07/12 7:59 p.m.2 views

DEBIAN-CVE-2016-4994

Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service program crash or possibly execute arbitrary code via a crafted XCF file...

7.8CVSS8AI score0.03113EPSS
Exploits0References1
Rows per page
Query Builder