Lucene search
K

80 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.9 views

Astra Linux – Vulnerability in GIMP

GIMP JP2 File Parsing: Heap-Based Buffer Overflow and Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability, as the target must visit a malicious page ...

7.8CVSS7.8AI score0.00539EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/15 1:49 a.m.9 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.9AI score0.00755EPSS
Exploits1References6
NVD
NVD
added 2026/06/10 11:16 p.m.8 views

CVE-2026-46559

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

4CVSS0.00116EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/26 8:52 a.m.15 views

gimp: GIMP: Remote Code Execution via malicious JP2 file parsing

A flaw was found in GIMP. A remote attacker could exploit this by tricking a user into opening a specially crafted JP2 JPEG 2000 file. This flaw is due to a heap-based buffer overflow during JP2 file parsing, which allows for arbitrary code execution. Successful exploitation enables the attacker ...

7.8CVSS7.7AI score0.00744EPSS
Exploits0References6
OSV
OSV
added 2026/05/14 12:3 p.m.12 views

RLSA-2026:16484 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:Memo...

7.8CVSS7.4AI score0.00755EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: gimp (UTSA-2026-014294)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014294 advisory. GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affecte...

7.8CVSS7.9AI score0.00744EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: gimp (UTSA-2026-006280)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006280 advisory. GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affecte...

7.8CVSS6.3AI score0.00539EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/29 4:33 p.m.8 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.4AI score0.00539EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/29 12:0 a.m.4 views

SUSE SLED15: gimp / gimp-devel / gimp-lang / gimp-plugin-aa / libgimp-2_0-0 / etc (SUSE-SU-2026:0313-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0313-1 advisory. - CVE-2025-14422: Fixed RCE vulnerability due to PNM file parsing integer overflow bsc1255293 -...

7.8CVSS7.4AI score0.00539EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/01/29 12:0 a.m.3 views

RHEL 9 : gimp (RHSA-2026:1586)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1586 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

7.8CVSS7.3AI score0.00539EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/01/28 8:23 p.m.8 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.4AI score0.00539EPSS
Exploits1References3
SUSE Linux
SUSE Linux
added 2026/01/28 10:13 a.m.6 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2025-14422: Fixed RCE vulnerability due to PNM file parsing integer overflow bsc1255293 CVE-2025-14425: Fixed RCE vulnerability due to JP2 file parsing heap-based buffer overflow bsc1255296 Patch Instructions: To install this SUSE update use th...

8.4CVSS6AI score0.00539EPSS
Exploits1References8
OSV
OSV
added 2026/01/28 10:13 a.m.4 views

SUSE-SU-2026:0313-1 Security update for gimp

This update for gimp fixes the following issues: - CVE-2025-14422: Fixed RCE vulnerability due to PNM file parsing integer overflow bsc1255293 - CVE-2025-14425: Fixed RCE vulnerability due to JP2 file parsing heap-based buffer overflow bsc1255296...

7.8CVSS6.1AI score0.00539EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.18 views

RockyLinux 9 : gimp (RLSA-2026:0914)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0914 advisory. gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow CVE-2025-14422 gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based...

7.8CVSS6.3AI score0.00544EPSS
Exploits1References9
OSV
OSV
added 2026/01/21 12:0 a.m.4 views

ALSA-2026:0914 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

7.8CVSS6.2AI score0.00544EPSS
Exploits1References10
AlmaLinux
AlmaLinux
added 2026/01/21 12:0 a.m.7 views

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

7.8CVSS6.2AI score0.00544EPSS
Exploits1References10
Debian
Debian
added 2026/01/02 3:46 p.m.7 views

[SECURITY] [DLA 4431-1] gimp security update

Debian LTS Advisory DLA-4431-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson January 02, 2026 https://wiki.debian.org/LTS Package : gimp Version : 2.10.22-4+deb11u5 CVE ID : CVE-2022-30067 CVE-2025-14422 CVE-2025-14425 Debian Bug : Several vulnerabilities wer...

7.8CVSS7.3AI score0.00715EPSS
Exploits2
OSV
OSV
added 2025/12/23 10:15 p.m.2 views

CVE-2025-14425

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.6AI score
Exploits0References2
OSV
OSV
added 2025/12/23 10:15 p.m.2 views

DEBIAN-CVE-2025-14425

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.8AI score0.00539EPSS
Exploits0References1
CVE
CVE
added 2025/12/23 9:31 p.m.30 views

CVE-2025-14425

Summary: CVE-2025-14425 affects GIMP via a JP2 file parsing heap-based buffer overflow, enabling remote code execution. The flaw arises from inadequate validation of JP2 data length before copying to a heap buffer. Exploitation in the wild is not detailed in the provided documents; the initial de...

7.8CVSS7.8AI score0.00539EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder