MiracleLinux 8 : gimp:2.8 (AXSA:2026-712:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-712:01 advisory. gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image CVE-2026-4887 gimp: GIMP: Remote Code Execution via XPM File Parsi...

Debian dla-4547 : gimp - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4547 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4547-1 [email protected]...

[SECURITY] [DSA 6215-1] gimp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6215-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 17, 2026 https://www.debian.org/security/faq -...

CVE-2026-4153

GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

GIMP 安全漏洞

GIMP is an open-source bitmap image editor developed by the GIMP team. GIMP has a security vulnerability that stems from insufficient length validation during the parsing of PSP files, which may lead to remote code execution...

[SECURITY] [DSA 6139-1] gimp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6139-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 18, 2026 https://www.debian.org/security/faq -...

CVE-2025-15059

GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

CVE-2024-6818 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

CVE-2024-5876

IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-6817 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

CVE-2024-6817

CVE-2024-6817 — IrfanView PSP file parsing involves an out-of-bounds write during PSP data parsing due to insufficient input validation, enabling remote code execution when a user opens a malicious PSP file/page. Affected software is IrfanView; the flaw occurs in PSP parsing logic and can execute...

CVE-2024-6816

The CVE-2024-6816 entry concerns IrfanView’s PSP file parsing. The root cause is insufficient validation of the length of user-supplied data during PSP parsing, leading to a heap-based buffer overflow and remote code execution. The vulnerability requires user interaction (target must visit a mali...

CVE-2024-5876

CVE-2024-5876 concerns IrfanView’s PSP file parsing, where a heap-based buffer overflow can lead to remote code execution. The flaw stems from insufficient validation of user-supplied data length before copying it into a heap buffer, allowing an attacker to run code in the affected process after ...

CVE-2024-5876 IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

PT-2024-37881 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

Rocky Linux 9 : gimp (RLSA-2024:0675)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0675 advisory. - GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary...

CVE-2023-44443

GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. The...

GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files...

PT-2023-7231 · Gimp +9 · Gimp +9

Name of the Vulnerable Software and Affected Versions: GIMP affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this issue, where the target must visit a malicious page...