CVE-2026-4154

GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

RHSA-2026:5436 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

EUVD-2026-10397

ImageMagick has heap-based buffer overflow in UHDR encoder...

EUVD-2026-10385

ImageMagick has uninitialized pointer dereference in JBIG decoder...

CVE-2026-28493

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerabili...

EUVD-2026-10386

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

EUVD-2026-7415

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with IPTCTEXT. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

CVE-2025-68618 Magick's failure to limit the depth of SVG file reads caused a DoS attack.

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue...

PT-2025-51986

Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A flaw exists in GIMP's parsing of JP2 files, stemming from insufficient validation of user-supplied data length before copying it into a heap-based buffer. This can allow a remote attacker to...

DSA-6014-1 gimp - security update

Bulletin has no description...

Adobe InCopy 缓冲区错误漏洞

Adobe InCopy is a text editing software for creative writing from the American company Audobee Adobe. Adobe InCopy suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code on the system or cause the application to crash...

RLSA-2025:7417 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: dds buffe...

CVE-2025-53211

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Roland Beaussant Audio Editor & Recorder audio-editor-recorder allows Retrieve Embedded Sensitive Data.This issue affects Audio Editor & Recorder: from n/a through = 2.2.3...

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: Multiple...

Adobe Lightroom Desktop Buffer Overflow Vulnerability

Adobe Lightroom Desktop is a professional photo management and editing software from the American company Audobee Adobe, designed to provide photographers and image editors with powerful workflow and editing tools. Adobe Lightroom Desktop suffers from a buffer overflow vulnerability that originat...

fontforge security update

An update is available for fontforge. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FontForge is a font editor for outline and bitmap fonts. It supports a rang...

Adobe Premiere Pro Buffer Overflow Vulnerability

Adobe Premiere Pro is a set of non-linear editing video editing software from the American company Audobee Adobe. A buffer overflow vulnerability exists in Adobe Premiere Pro, which can be exploited by an attacker to execute arbitrary code...

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created JB2 file...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in buffer overflows in the stack, which allows attackers to trigger a service failure.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

Adobe Premiere Pro Stack Overflow Vulnerability

Adobe Premiere Pro is a video editing software developed by Adobe. A security vulnerability exists in Adobe Premiere Pro version 25.0 and prior versions, which stems from the inclusion of a heap-based buffer overflow vulnerability. An attacker can exploit the vulnerability to cause arbitrary code...